Browse CVEs
145,147 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-66371 | Peppol-py XXE Attack | Medium | 5.0 | Medium Risk | Patched | 28-Nov-25 |
| CVE-2025-58304 | Permission control vulnerability in the file management m... | Medium | 4.9 | Low Risk | Unpatched (17d) | 28-Nov-25 |
| CVE-2025-64312 | Permission control vulnerability in the file management m... | Medium | 4.9 | Low Risk | Unpatched (17d) | 28-Nov-25 |
| CVE-2025-64315 | Configuration defect vulnerability in the file management... | Medium | 4.4 | Low Risk | Unpatched (17d) | 28-Nov-25 |
| CVE-2025-13737 | The Nextend Social Login and Register plugin for WordPres... | Medium | 4.3 | Low Risk | Unpatched (17d) | 28-Nov-25 |
| CVE-2025-66386 | app/Model/EventReport.php in MISP before 2.5.27 allows pa... | Medium | 4.1 | Low Risk | Patched | 28-Nov-25 |
| CVE-2025-13378 | The AI ChatBot with ChatGPT and Content Generator by AYS ... | Medium | 6.5 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12649 | The SortTable Post plugin for WordPress is vulnerable to ... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12666 | The Google Drive upload and download link plugin for Word... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12670 | The wp-twitpic plugin for WordPress is vulnerable to Stor... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |