Browse CVEs
144,994 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-65675 | Stored Cross site scripting (XSS) vulnerability in Classr... | Medium | 5.4 | High Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-65676 | Stored Cross site scripting (XSS) vulnerability in Classr... | Medium | 5.4 | High Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-66030 | Forge (also called `node-forge`) is a native implementati... | Medium | 5.3 | Medium Risk | Partial | 26-Nov-25 |
| CVE-2025-66025 | Caido is a web security auditing toolkit. Prior to versio... | Medium | 4.3 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-65239 | Incorrect access control in the /aux1/ocussd/trace endpoi... | Medium | 4.3 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-65670 | An Insecure Direct Object Reference (IDOR) in classroomio... | Medium | 4.3 | High Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-6195 | GitLab has remediated an issue in GitLab EE affecting all... | Medium | 4.3 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-13378 | The AI ChatBot with ChatGPT and Content Generator by AYS ... | Medium | 6.5 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12649 | The SortTable Post plugin for WordPress is vulnerable to ... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12666 | The Google Drive upload and download link plugin for Word... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |