This page offers a live ATOM feed of the latest CVEs and Vulnerabilities from cvefeed.io. HIGH or CRITICAL
- CVE-2025-11302 - Belkin F9K1015 formWpsStart buffer overflow
- CVE-2025-11301 - Belkin F9K1015 formWlanSetupWPS buffer overflow
- CVE-2025-11300 - Belkin F9K1015 formWlanMP buffer overflow
- CVE-2025-11299 - Belkin F9K1015 formWanTcpipSetup buffer overflow
- CVE-2025-11297 - Belkin F9K1015 formSetLanguage buffer overflow
- CVE-2025-11296 - Belkin F9K1015 formPPTPSetup buffer overflow
- CVE-2025-11295 - Belkin F9K1015 formPPPoESetup buffer overflow
- CVE-2025-11294 - Belkin F9K1015 formL2TPSetup buffer overflow
- CVE-2025-11293 - Belkin F9K1015 formConnectionSetting buffer overflow
- CVE-2025-61882 - Vulnerability in the Oracle Concurrent Processing
- CVE-2025-9243 - Cost Calculator Builder <= 3.5.32 - Authenticated (Subscriber+) Missing Authorization via get_cc_orders/update_order_status Functions
- CVE-2025-10751 - MacForge 1.2.0 Beta 1 - Local Privilege Escalation
- CVE-2025-61673 - Karapace is vulnerable to Authentication Bypass
- CVE-2025-59943 - phpMyFAQ duplicate email registration allows multiple accounts with the same email
- CVE-2025-54374 - Eidos: One-click Remote Code Execution through Custom URL Handling
- CVE-2025-49844 - Redis Lua Use-After-Free may lead to remote code execution
- CVE-2025-57714 - NetBak Replicator
- CVE-2025-53595 - Qsync Central
- CVE-2025-61592 - Cursor CLI: Arbitrary Code Execution Possible through Permissive CLI Config
- CVE-2025-56551 - DirectAdmin Cross-Site Scripting (XSS)
- CVE-2025-10729 - Use-after-free vulnerability in Qt SVG qsvghandler.cpp allows denial of service via crafted SVG