Browse CVEs
145,017 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-13448 | The CSSIgniter Shortcodes plugin for WordPress is vulnera... | Medium | 6.4 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-13401 | The Autoptimize plugin for WordPress is vulnerable to Sto... | Medium | 6.4 | High Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-66404 | MCP Server Kubernetes is an MCP Server that can connect t... | Medium | 6.4 | Medium Risk | Patched | 03-Dec-25 |
| CVE-2025-13949 | A vulnerability was identified in ProudMuBai GoFilm 1.0.0... | Medium | 6.3 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-55076 | A local privilege escalation vulnerability exists in the ... | Medium | 6.2 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-62686 | A local privilege escalation vulnerability exists in the ... | Medium | 6.2 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-65841 | Aquarius Desktop 3.0.069 for macOS stores user authentica... | Medium | 6.2 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-57202 | A stored cross-site scripting (XSS) vulnerability in the ... | Medium | 6.1 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-13948 | A vulnerability was determined in opsre go-ldap-admin up ... | Medium | 5.6 | Low Risk | Unpatched (11d) | 03-Dec-25 |
| CVE-2025-13945 | HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows... | Medium | 5.5 | Low Risk | Partial | 03-Dec-25 |