🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2020-37150 | High | 7.5 |
Edimax EW-7438RPn-v3 Mini 1.27 allows unauthenticated attackers to access the /wizard_reboot.asp page in unsetup mode, w…
|
⚡ Exploit ✅ Patch | Feb 5, 2026 |
| CVE-2025-69213 | High | 8.8 |
OpenSTAManager is an open source management software for technical assistance and invoicing. In version 2.9.8 and prior,…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2025-69215 | High | 8.8 |
OpenSTAManager is an open source management software for technical assistance and invoicing. In version 2.9.8 and prior,…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25512 | High | 8.8 |
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.150, 25.0.82, a…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25513 | High | 8.8 |
FacturaScripts is open-source enterprise resource planning and accounting software. Prior to version 2025.81, FacturaScr…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25514 | High | 8.8 |
FacturaScripts is open-source enterprise resource planning and accounting software. Prior to version 2025.81, FacturaScr…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25521 | High | 8.8 |
Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. In versions from 2.0.12 to…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25538 | High | 8.8 |
Devtron is an open source tool integration platform for Kubernetes. In version 2.0.0 and prior, a vulnerability exists i…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-24884 | High | 8.4 |
Compressing is a compressing and uncompressing lib for node. In version 2.0.0 and 1.10.3 and prior, Compressing extracts…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25499 | High | 7.5 |
Terraform / OpenTofu Provider adds support for Proxmox Virtual Environment. Prior to version 0.93.1, in the SSH configur…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25537 | High | 7.5 |
jsonwebtoken is a JWT lib in rust. Prior to version 10.3.0, there is a Type Confusion vulnerability in jsonwebtoken, spe…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25541 | High | 7.5 |
Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer o…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25575 | High | 7.5 |
NavigaTUM is a website and API to search for rooms, buildings and other places. Prior to commit 86f34c7, there is a path…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2025-15555 | High | 7.3 |
A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the function hss_ogs_diam_…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2020-37073 | High | 8.8 |
Victor CMS 1.0 contains an authenticated file upload vulnerability that allows administrators to upload PHP files with a…
|
⚡ Exploit ✅ Patch | Feb 3, 2026 |
| CVE-2020-37113 | High | 8.8 |
GUnet OpenEclass 1.7.3 allows authenticated users to bypass file extension restrictions when uploading files. By renamin…
|
⚡ Exploit ✅ Patch | Feb 3, 2026 |
| CVE-2020-37116 | High | 8.8 |
GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the…
|
⚡ Exploit ✅ Patch | Feb 3, 2026 |
| CVE-2020-37076 | High | 8.2 |
Victor CMS version 1.0 contains a SQL injection vulnerability in the 'post' parameter on post.php that allows remote att…
|
⚡ Exploit ✅ Patch | Feb 3, 2026 |
| CVE-2019-25261 | High | 7.8 |
AnyDesk 5.4.0 contains an unquoted service path vulnerability in its Windows service configuration that allows local att…
|
⚡ Exploit ✅ Patch | Feb 3, 2026 |
| CVE-2020-37100 | High | 7.8 |
Sync Breeze Enterprise 12.4.18 contains an unquoted service path vulnerability that allows local attackers to execute ar…
|
⚡ Exploit ✅ Patch | Feb 3, 2026 |