Browse CVEs
144,488 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2026-20883 | Gitea Stopwatch API Privilege Escalation | Medium | 6.5 | Low Risk | Patched | 22-Jan-26 |
| CVE-2026-20904 | CVE-2026-20904 | Medium | 6.5 | Low Risk | Patched | 22-Jan-26 |
| CVE-2025-67961 | WPO365 Login SSRF Vulnerability | Medium | 6.4 | Low Risk | Patched | 22-Jan-26 |
| CVE-2026-1326 | Totolink NR1800X Remote Command Injection | Medium | 6.3 | Low Risk | Patched | 22-Jan-26 |
| CVE-2026-1327 | Totolink NR1800X Router Remote Command Injection | Medium | 6.3 | Low Risk | Patched | 22-Jan-26 |
| CVE-2025-69098 | Wordpress Plugin XSS | Medium | 6.1 | Low Risk | Patched | 22-Jan-26 |
| CVE-2025-69316 | TableOn Plugin XSS | Medium | 6.1 | Low Risk | Patched | 22-Jan-26 |
| CVE-2025-69317 | Carspot Reflected XSS | Medium | 6.1 | Low Risk | Patched | 22-Jan-26 |
| CVE-2025-25051 | aEnrich Token Forgery | Medium | 6.1 | Low Risk | Workaround | 22-Jan-26 |
| CVE-2025-67652 | aEnrich Token Forgery | Medium | 6.1 | Low Risk | Workaround | 22-Jan-26 |