Browse CVEs
145,316 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-62729 | SOPlanning is vulnerable to Stored XSS in /status endpoin... | Medium | 5.4 | Low Risk | Patched | 20-Nov-25 |
| CVE-2025-55127 | HackerOne community member Dao Hoang Anh (yoyomiski) has ... | Medium | 5.4 | Low Risk | Unpatched (25d) | 20-Nov-25 |
| CVE-2025-52667 | Missing JSON Content-Type header in a script in Revive Ad... | Medium | 5.4 | Low Risk | Unpatched (25d) | 20-Nov-25 |
| CVE-2025-52668 | Improper input neutralization in the stats-conversions.ph... | Medium | 5.4 | Low Risk | Unpatched (25d) | 20-Nov-25 |
| CVE-2025-55123 | Improper neutralization of input in Revive Adserver 5.5.2... | Medium | 5.4 | Low Risk | Unpatched (25d) | 20-Nov-25 |
| CVE-2025-12778 | The Ultimate Member Widgets for Elementor – WordPress Use... | Medium | 5.3 | Low Risk | Unpatched (25d) | 20-Nov-25 |
| CVE-2025-13434 | A weakness has been identified in jameschz Hush Framework... | Medium | 5.3 | Low Risk | Unpatched (25d) | 20-Nov-25 |
| CVE-2025-40605 | A Path Traversal vulnerability has been identified in the... | Medium | 5.3 | Low Risk | Unpatched (25d) | 20-Nov-25 |
| CVE-2025-36160 | IBM Concert 1.0.0 through 2.0.0 could disclose sensitive ... | Medium | 5.3 | Low Risk | Patched | 20-Nov-25 |
| CVE-2025-36158 | IBM Concert 1.0.0 through 2.0.0 could allow a local user ... | Medium | 5.1 | Low Risk | Patched | 20-Nov-25 |