Browse CVEs
28,837 critical severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-28232 | Incorrect access control in the HOME.php endpoint of JMBr... | Critical | 9.1 | Low Risk | 18-Apr-25 | |
| CVE-2025-28231 | Incorrect access control in Itel Electronics IP Stream v1... | Critical | 9.1 | Low Risk | 18-Apr-25 | |
| CVE-2025-28233 | Incorrect access control in BW Broadcast TX600 (14980), T... | Critical | 9.1 | Low Risk | 18-Apr-25 | |
| CVE-2025-28197 | Crawl4AI <=0.4.247 is vulnerable to SSRF in /crawl4ai/asy... | Critical | 9.1 | Low Risk | Patched | 18-Apr-25 |
| CVE-2025-3278 | The UrbanGo Membership plugin for WordPress is vulnerable... | Critical | 9.8 | Low Risk | 19-Apr-25 | |
| CVE-2025-1093 | The AIHub theme for WordPress is vulnerable to arbitrary ... | Critical | 9.8 | Low Risk | 19-Apr-25 | |
| CVE-2021-4455 | The Wordpress Plugin Smart Product Review plugin for Word... | Critical | 9.8 | Low Risk | 19-Apr-25 | |
| CVE-2025-29287 | An arbitrary file upload vulnerability in the ueditor com... | Critical | 9.8 | Low Risk | 21-Apr-25 | |
| CVE-2025-29659 | Yi IOT XY-3820 6.0.24.10 is vulnerable to Remote Command ... | Critical | 9.8 | Low Risk | 21-Apr-25 | |
| CVE-2025-29660 | A vulnerability exists in the daemon process of the Yi IO... | Critical | 9.8 | Low Risk | 21-Apr-25 |