Browse CVEs
145,285 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-66026 | REDAXO is a PHP-based CMS. Prior to version 5.20.1, a ref... | Medium | 6.1 | Medium Risk | Patched | 26-Nov-25 |
| CVE-2025-9163 | The Houzez theme for WordPress is vulnerable to Stored Cr... | Medium | 6.1 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-65237 | USSD Gateway Reflected Cross-Site Scripting | Medium | 6.1 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-13674 | BPv7 dissector crash in Wireshark 4.6.0 allows denial of ... | Medium | 5.5 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-65963 | Files is a module for managing files inside spaces and us... | Medium | 5.4 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-66258 | Stored Cross-Site Scripting via XML Injection in DB Elect... | Medium | 5.4 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-62728 | SQL injection vulnerability in Hive Metastore Server (HMS... | Medium | 5.4 | Medium Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-65675 | Stored Cross site scripting (XSS) vulnerability in Classr... | Medium | 5.4 | High Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-65676 | Stored Cross site scripting (XSS) vulnerability in Classr... | Medium | 5.4 | High Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-66030 | Forge (also called `node-forge`) is a native implementati... | Medium | 5.3 | Medium Risk | Partial | 26-Nov-25 |