Browse CVEs
145,385 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-64708 | authentik is an open-source Identity Provider. Prior to v... | Medium | 5.8 | Medium Risk | Patched | 19-Nov-25 |
| CVE-2025-13225 | Tanium TanOS Arbitrary File Deletion Vulnerability | Medium | 5.6 | Low Risk | Patched | 19-Nov-25 |
| CVE-2025-12359 | The Responsive Lightbox & Gallery plugin for WordPress is... | Medium | 5.4 | Low Risk | Unpatched (26d) | 19-Nov-25 |
| CVE-2025-11963 | Improper Neutralization of Input During Web Page Generati... | Medium | 5.4 | Low Risk | Patched | 19-Nov-25 |
| CVE-2025-65019 | Astro is a web framework. Prior to version 5.15.9, when u... | Medium | 5.4 | Medium Risk | Patched | 19-Nov-25 |
| CVE-2025-51662 | A stored cross-site scripting (XSS) vulnerability is foun... | Medium | 5.4 | Low Risk | Unpatched (26d) | 19-Nov-25 |
| CVE-2025-12427 | The YITH WooCommerce Wishlist plugin for WordPress is vul... | Medium | 5.3 | Low Risk | Unpatched (26d) | 19-Nov-25 |
| CVE-2025-12770 | The New User Approve plugin for WordPress is vulnerable t... | Medium | 5.3 | Low Risk | Unpatched (26d) | 19-Nov-25 |
| CVE-2025-12777 | The YITH WooCommerce Wishlist plugin for WordPress is vul... | Medium | 5.3 | Low Risk | Unpatched (26d) | 19-Nov-25 |
| CVE-2025-12349 | The Icegram Express - Email Subscribers, Newsletters and ... | Medium | 5.3 | Low Risk | Unpatched (26d) | 19-Nov-25 |