Note:
This project will be discontinued after December 13, 2021. [more]
Main entries ~3682 :
No results found.
Remaining NVD entries (unprocessed / no code available): ~298995 :
| Date | Id | Summary | Products | Score | Patch |
|---|---|---|---|---|---|
| 2025-07-30 | CVE-2025-8329 | A vulnerability, which was classified as critical, was found in code-projects Vehicle Management 1.0. This affects an unknown part of the file /filter3.php. The manipulation of the argument company leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. | N/A | 7.3 | |
| 2025-07-30 | CVE-2025-30103 | Dell SmartFabric OS10 Software, versions prior to 10.6.0.5 contains a Files or Directories Accessible to External Parties vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Filesystem access for attacker. | N/A | N/A | |
| 2025-07-30 | CVE-2025-36608 | Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access. | N/A | N/A | |
| 2025-07-30 | CVE-2025-36609 | Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains a Use of Hard-coded Password vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges. | N/A | N/A | |
| 2025-07-30 | CVE-2025-50464 | A buffer overflow vulnerability exists in the upload.cgi module of the iptime NAS firmware v1.5.04. The vulnerability arises due to the unsafe use of the strcpy function to copy attacker-controlled data from the CONTENT_TYPE HTTP header into a fixed-size stack buffer (v8, allocated 8 bytes) without bounds checking. Since this operation occurs before authentication logic is executed, the vulnerability is exploitable pre-authentication. | N/A | N/A | |
| 2025-07-30 | CVE-2025-50777 | The firmware of the AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera (version V1.00.02) contains an Incorrect Access Control vulnerability that allows local attackers to gain root shell access. Once accessed, the device exposes critical data including Wi-Fi credentials and ONVIF service credentials stored in plaintext, enabling further compromise of the network and connected systems. | N/A | N/A | |
| 2025-07-30 | CVE-2025-51951 | andisearch v0.5.249 was discovered to contain a cross-site scripting (XSS) vulnerability. | N/A | N/A |