Hydra Booking – All in One Appointment Booking System | Appointment Scheduling, Booking Calendar & WooCommerce Bookings <= 1.1.27 - Unauthenticated...

No fix

Nov 11, 2025

CVE-2025-6515

MEDIUM

Reuse of session IDs in oatpp-mcp leads to session hijacking and prompt hijacking by remote attackers

No fix

Oct 20, 2025

CVE-2025-10745

MEDIUM

Banhammer – Monitor Site Traffic, Block Bad Users and Bots <= 3.4.8 - Unauthenticated Protection Mechanism Bypass

No fix

Sep 26, 2025

CVE-2025-10671

MEDIUM

youth-is-as-pale-as-poetry e-learning JWT Token JwtUtils.java encryptSecret random values

No fix

Sep 18, 2025

CVE-2025-7783

CRITICAL

Usage of unsafe random function in form-data for choosing boundary

No fix

Jul 18, 2025

CVE-2025-6931

MEDIUM

D-Link DCS-6517/DCS-7517 Root Password Generation httpd generate_pass_from_mac entropy

No fix

Jun 30, 2025

CVE-2025-43866

LOW

Vantage6 Server JWT secret not cryptographically secure

No fix

Jun 12, 2025

CVE-2025-49198

LOW

Poor quality of randomness in authorization tokens

No fix

Jun 12, 2025

CVE-2025-4607

CRITICAL

PSW Front-end Login & Registration <= 1.12 - Insufficiently Random Values to Unauthenticated Account Takeover/Privilege Escalation via customer_reg...

No fix

May 31, 2025

CVE-2025-5136

MEDIUM

Tmall Demo Payment Identifier pay random values

No fix

May 24, 2025

CVE-2025-1953

LOW

vLLM AIBrix Prefix Caching hash.go random values

No fix

Mar 4, 2025

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2025-68704

HIGH

Jervis has a Weak Random for Timing Attack Mitigation

No fix

Jan 13, 2026

CVE-2025-11723

MEDIUM

Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin <= 1.6.9.5 - Unauthenticated Sensitive Information Exposure

No fix

Jan 6, 2026

CVE-2026-21444

MEDIUM

libtpms returns wrong initialization vector when certain symmetric ciphers are used

No fix

Jan 2, 2026

CVE-2025-11707

MEDIUM

No fix

Dec 13, 2025

CVE-2025-13955

CRITICAL

Predictable Default Wi-Fi Password in EZCast Pro II Dongle

No fix

Dec 10, 2025

CVE-2025-66511

MEDIUM

Nextcloud Calendar app used predictable proposal participant tokens

No fix

Dec 5, 2025

CVE-2025-13353

HIGH

gokey allows secret recovery from a seed file without the master password

No fix

Dec 2, 2025

CVE-2025-59371

HIGH

An authentication bypass vulnerability has been identified in the IFTTT integration feature

No fix

Nov 25, 2025

CVE-2025-13470

HIGH

RNP 0.18.0 Vulnerable PKESK session keys

No fix

Nov 21, 2025

CVE-2025-12787

MEDIUM

Hydra Booking – All in One Appointment Booking System | Appointment Scheduling, Booking Calendar & WooCommerce Bookings <= 1.1.27 - Unauthenticated...

No fix

Nov 11, 2025

CVE-2025-6515

MEDIUM

Reuse of session IDs in oatpp-mcp leads to session hijacking and prompt hijacking by remote attackers

No fix

Oct 20, 2025

CVE-2025-10745

MEDIUM

Banhammer – Monitor Site Traffic, Block Bad Users and Bots <= 3.4.8 - Unauthenticated Protection Mechanism Bypass

No fix

Sep 26, 2025

CVE-2025-10671

MEDIUM

youth-is-as-pale-as-poetry e-learning JWT Token JwtUtils.java encryptSecret random values

No fix

Sep 18, 2025

CVE-2025-7783

CRITICAL

Usage of unsafe random function in form-data for choosing boundary

No fix

Jul 18, 2025

CVE-2025-6931

MEDIUM

D-Link DCS-6517/DCS-7517 Root Password Generation httpd generate_pass_from_mac entropy

No fix

Jun 30, 2025

CVE-2025-43866

LOW

Vantage6 Server JWT secret not cryptographically secure

No fix

Jun 12, 2025

CVE-2025-49198

LOW

Poor quality of randomness in authorization tokens

No fix

Jun 12, 2025

CVE-2025-4607

CRITICAL

PSW Front-end Login & Registration <= 1.12 - Insufficiently Random Values to Unauthenticated Account Takeover/Privilege Escalation via customer_reg...

No fix

May 31, 2025

CVE-2025-5136

MEDIUM

Tmall Demo Payment Identifier pay random values

No fix

May 24, 2025

CVE-2025-1953

LOW

vLLM AIBrix Prefix Caching hash.go random values

No fix

Mar 4, 2025

Showing 1 - 20 of 1,000+ results

...