Browse CVEs
145,285 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-66025 | Caido is a web security auditing toolkit. Prior to versio... | Medium | 4.3 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-65239 | Incorrect access control in the /aux1/ocussd/trace endpoi... | Medium | 4.3 | Low Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-65670 | An Insecure Direct Object Reference (IDOR) in classroomio... | Medium | 4.3 | High Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-6195 | GitLab has remediated an issue in GitLab EE affecting all... | Medium | 4.3 | Low Risk | Patched | 26-Nov-25 |
| CVE-2025-33190 | NVIDIA DGX Spark GB10 contains a vulnerability in SROOT f... | Medium | 6.7 | Low Risk | Unpatched (20d) | 25-Nov-25 |
| CVE-2025-65960 | Contao is an Open Source CMS. From version 4.0.0 to befor... | Medium | 6.6 | Medium Risk | Workaround | 25-Nov-25 |
| CVE-2025-13507 | Inconsistent object size validation in time series proces... | Medium | 6.5 | Low Risk | Patched | 25-Nov-25 |
| CVE-2025-62497 | Cross-site request forgery vulnerability exists in SNC-CX... | Medium | 6.5 | Low Risk | Unpatched (20d) | 25-Nov-25 |
| CVE-2025-13644 | MongoDB Server may experience an invariant failure during... | Medium | 6.5 | Low Risk | Patched | 25-Nov-25 |
| CVE-2025-12040 | The Wishlist for WooCommerce plugin for WordPress is vuln... | Medium | 6.5 | Low Risk | Unpatched (20d) | 25-Nov-25 |