Browse CVEs
11,256 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-66302 | Grav is a file-based Web platform. Prior to 1.8.0-beta.27... | Medium | 6.8 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-63523 | FeehiCMS version 2.1.1 fails to enforce server-side immut... | Medium | 6.5 | Medium Risk | Unpatched (14d) | 01-Dec-25 |
| CVE-2025-66307 | This admin plugin for Grav is an HTML user interface that... | Medium | 6.5 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-66304 | Grav is a file-based Web platform. Prior to 1.8.0-beta.27... | Medium | 6.2 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-63520 | Cross Site Scripting (XSS) vulnerability in FeehiCMS 2.1.... | Medium | 6.1 | Medium Risk | Unpatched (14d) | 01-Dec-25 |
| CVE-2025-66309 | This admin plugin for Grav is an HTML user interface that... | Medium | 6.1 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-65621 | Snipe-IT before 8.3.4 allows stored XSS, allowing a low-p... | Medium | 5.4 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-65622 | Snipe-IT before 8.3.4 allows stored XSS via the Locations... | Medium | 5.4 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-66308 | This admin plugin for Grav is an HTML user interface that... | Medium | 5.4 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-66310 | This admin plugin for Grav is an HTML user interface that... | Medium | 5.4 | Medium Risk | Patched | 01-Dec-25 |