This page offers a live ATOM feed of the latest CVEs and Vulnerabilities from cvefeed.io. HIGH or CRITICAL
- CVE-2025-11022 - Panilux Personal Project CSRF Command Injection
- CVE-2025-40801 - "Siemens COMOS and NX TLS Certificate Validation Bypass"
- CVE-2025-67504 - WBCE CMS Cryptographically Insecure Password Generation Vulnerability
- CVE-2025-66627 - Wasmi's Linear Memory has a Critical Use After Free Vulnerability
- CVE-2025-42928 - Deserialization Vulnerability in SAP jConnect - SDK for ASE
- CVE-2025-42880 - Code Injection vulnerability in SAP Solution Manager
- CVE-2025-42878 - Sensitive Data Exposure in SAP Web Dispatcher and Internet Communication Manager (ICM)
- CVE-2025-66481 - DeepChat's Incomplete XSS Fix Allows RCE through Mermaid Content
- CVE-2025-65964 - n8n Vulnerable to Remote Code Execution via Git Node Custom Pre-Commit Hook
- CVE-2025-64081 - SourceCodester Patients Waiting Area Queue Management System SQL Injection
- CVE-2025-14258 - itsourcecode Student Management System newsubject.php sql injection
- CVE-2025-48626 - Cisco Application Remote Privilege Escalation
- CVE-2025-14256 - itsourcecode Student Management System newcurriculm.php sql injection
- CVE-2025-42620 - CSRF vulnerability in CIRCL Vulnerability-Lookup
- CVE-2025-42615 - Improper Restriction of Excessive Authentication Attempts vulnerability in CIRCL Vulnerability-Lookup
- CVE-2025-27019 - Remote shell service (RSH) in Infinera MTC-9
- CVE-2025-66328 - Cisco Network Management Module Race Condition Vulnerability
- CVE-2025-12956 - Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x
- CVE-2025-66324 - Apache App Data Integrity Verification Flaw