This page offers a live ATOM feed of the latest CVEs and Vulnerabilities from cvefeed.io. HIGH or CRITICAL
- CVE-2025-36357 - IBM Planning Analytics Local Directory Traversal
- CVE-2024-44659 - PHPGurukul Online Shopping Portal SQL Injection
- CVE-2025-34322 - Nagios Log Server < 2026R1.0.1 Authenticated Command Injection via Natural Language Queries
- CVE-2025-13319 - Authenticated SQL injection in API - Digi On-Prem Manager
- CVE-2025-63747 - QaTraq Default Administrative Account Credentials Vulnerability
- CVE-2025-13288 - Tenda CH22 PPTPUserSetting fromPptpUserSetting buffer overflow
- CVE-2025-9501 - W3 Total Cache < 2.8.13 - Unauthenticated Command Injection
- CVE-2025-13284 - ThinPLUS|ThinPLUS - OS Command Injection
- CVE-2025-13282 - Chunghwa Telecom|TenderDocTransfer - Arbitrary File Delete
- CVE-2025-10460 - Unsanitized parameter input leading to SQL Injection vulnerability
- CVE-2025-13190 - D-Link DIR-816L __ajax_exporer.sgi scandir_main stack-based overflow
- CVE-2025-13189 - D-Link DIR-816L gena.cgi genacgi_main stack-based overflow
- CVE-2025-64309 - Brightpick Mission Control / Internal Logic Control Unprotected Transport of Credentials
- CVE-2025-58083 - General Industrial Controls Lynx+ Gateway Missing Authentication for Critical Function
- CVE-2025-55034 - General Industrial Controls Lynx+ Gateway Weak Password Requirements
- CVE-2021-4470 - TG8 Firewall Unauthenticated RCE via runphpcmd.php