Browse CVEs
145,016 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-29844 | A vulnerability in FileStation file cgi allows remote aut... | Medium | 4.3 | Low Risk | Patched | 04-Dec-25 |
| CVE-2025-29845 | A vulnerability in VideoPlayer2 subtitle cgi allows remot... | Medium | 4.3 | Low Risk | Patched | 04-Dec-25 |
| CVE-2025-63681 | open-webui v0.6.33 is vulnerable to Incorrect Access Cont... | Medium | 4.3 | Medium Risk | Unpatched (10d) | 04-Dec-25 |
| CVE-2025-12996 | Medtronic CareLink Network allows a local attacker with a... | Medium | 4.1 | Low Risk | Unpatched (10d) | 04-Dec-25 |
| CVE-2025-13359 | The Tag, Category, and Taxonomy Manager – AI Autotagger w... | Medium | 6.5 | Low Risk | Patched | 03-Dec-25 |
| CVE-2025-64527 | Envoy is a high-performance edge/middle/service proxy. In... | Medium | 6.5 | Medium Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-61727 | An excluded subdomain constraint in a certificate chain d... | Medium | 6.5 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-65345 | alexusmai laravel-file-manager 3.3.1 and below is vulnera... | Medium | 6.5 | High Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-57200 | DGM1104 FullImg-1015-1004-1006-1003 Authenticated Command Injection | Medium | 6.5 | Low Risk | Patched | 03-Dec-25 |
| CVE-2025-13448 | The CSSIgniter Shortcodes plugin for WordPress is vulnera... | Medium | 6.4 | Low Risk | Unpatched (11d) | 03-Dec-25 |