Browse CVEs
11,286 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-43812 | Cross-site scripting (XSS) vulnerability in web content t... | Medium | 5.4 | Medium Risk | Patched | 29-Sep-25 |
| CVE-2025-43820 | Multiple cross-site scripting (XSS) vulnerabilities in th... | Medium | 5.4 | Medium Risk | Patched | 29-Sep-25 |
| CVE-2025-43811 | Multiple stored cross-site scripting (XSS) vulnerability ... | Medium | 5.4 | Medium Risk | Patched | 29-Sep-25 |
| CVE-2025-59163 | vet is an open source software supply chain security tool... | Unknown | - | Medium Risk | Patched | 29-Sep-25 |
| CVE-2025-56572 | An issue in finance.js v.4.1.0 allows a remote attacker t... | High | 7.5 | Medium Risk | 30-Sep-25 | |
| CVE-2025-56571 | Finance.js v4.1.0 contains a Denial of Service (DoS) vuln... | High | 7.5 | Medium Risk | 30-Sep-25 | |
| CVE-2025-11149 | This affects all versions of the package node-static; all... | High | 7.5 | Medium Risk | 30-Sep-25 | |
| CVE-2025-55191 | Argo CD is a declarative, GitOps continuous delivery tool... | Medium | 6.5 | Medium Risk | Patched | 30-Sep-25 |
| CVE-2025-55797 | An improper access control vulnerability in FormCms v0.5.... | Medium | 6.5 | Medium Risk | Unpatched (82d) | 30-Sep-25 |
| CVE-2025-59956 | AgentAPI is an HTTP API for Claude Code, Goose, Aider, Ge... | Medium | 6.5 | Medium Risk | 30-Sep-25 |