Browse CVEs
144,547 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-15094 | FlyCMS Cross-Site Scripting Vulnerability | Medium | 4.3 | Low Risk | Patched | 26-Dec-25 |
| CVE-2025-68938 | Gitea Release Deletion Bypass | Medium | 4.3 | Low Risk | Patched | 26-Dec-25 |
| CVE-2025-66737 | Yealink T21P_E2 Phone Directory Traversal Exploit | Medium | 4.3 | Low Risk | Unpatched | 26-Dec-25 |
| CVE-2025-14178 | PHP Heap Buffer Overflow | Medium | 6.5 | Low Risk | Patched | 27-Dec-25 |
| CVE-2025-68927 | aEnrich HR Admin Token Forgery | Medium | 6.1 | Medium Risk | Patched | 27-Dec-25 |
| CVE-2025-68972 | GnuPG Form Feed Vulnerability | Medium | 5.9 | Low Risk | Patched | 27-Dec-25 |
| CVE-2025-15110 | Jackq XCMS Remote File Upload Vulnerability | Medium | 4.7 | Low Risk | Unpatched (13d) | 27-Dec-25 |
| CVE-2025-15133 | CVE-2025-15133 | Medium | 6.3 | Low Risk | Unpatched (10d) | 28-Dec-25 |
| CVE-2025-15131 | ZSPACE Z4Pro+ Remote Command Injection Vulnerability | Medium | 6.3 | Low Risk | Patched | 28-Dec-25 |
| CVE-2025-15132 | ZSPACE Z4Pro+ | Medium | 6.3 | Low Risk | Patched | 28-Dec-25 |