Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
5.1 MEDIUM
CVE-2020-37145 — HRSALE 1.1.8 - Cross-Site Request Forgery (Add Admin)

HRSALE 1.1.8 contains a cross-site request forgery vulnerability that allows attackers to add unauthorized administrative users through the employee registration form. Attackers can craft a malicious…

hrsale | Remote | Cross-Site Request Forgery
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
5.3 MEDIUM
CVE-2020-37144 — Exagate Sysguard 6001 - Cross-Site Request Forgery (Add Admin)

Exagate SYSGuard 6001 contains a cross-site request forgery vulnerability that allows attackers to create unauthorized admin accounts through a crafted HTML form. Attackers can trick users into submi…

sysguard_3001_firmware | Remote | Cross-Site Request Forgery
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
7.5 HIGH
CVE-2020-37143 — ProficySCADA for iOS 5.0.25920 - 'Password' Denial of Service

ProficySCADA for iOS 5.0.25920 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the password input field. Attackers can overwrite the password…

Remote | Denial of Service
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
8.4 HIGH
CVE-2020-37142 — 10-Strike Network Inventory Explorer 8.54 - 'Add' Local Buffer Overflow (SEH)

10-Strike Network Inventory Explorer 8.54 contains a structured exception handler buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting SEH records. Attackers c…

network_inventory_explorer | Memory Corruption
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
5.5 MEDIUM
CVE-2020-37140 — Everest 5.50.2100 - 'Open File' Denial of Service

Everest, later referred to as AIDA64, 5.50.2100 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating file open functionality. Attackers can …

everest | Denial of Service
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
8.4 HIGH
CVE-2020-37139 — Odin Secure FTP Expert 7.6.3 - 'Site Info' Denial of Service

Odin Secure FTP Expert 7.6.3 contains a local denial of service vulnerability that allows attackers to crash the application by manipulating site information fields. Attackers can generate a buffer o…

| Denial of Service
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
9.8 CRITICAL
CVE-2020-37138 — 10-Strike Network Inventory Explorer 9.03 - 'Read from File' Buffer Overflow (SEH)(ROP)

10-Strike Network Inventory Explorer 9.03 contains a buffer overflow vulnerability in the file import functionality that allows remote attackers to execute arbitrary code. Attackers can craft a malic…

network_inventory_explorer | Remote | Memory Corruption
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
9.8 CRITICAL
CVE-2020-37137 — PHP-Fusion 9.03.50 - 'panels.php' Eval Injection

PHP-Fusion 9.03.50 contains a remote code execution vulnerability in the 'add_panel_form()' function that allows attackers to execute arbitrary code through an eval() function with unsanitized POST d…

phpfusion | Remote | Injection
Feb 05, 2026 Feb 09, 2026
Feb 05, 2026
Feb 09, 2026
7.5 HIGH
CVE-2020-37136 — ZOC Terminal v7.25.5 - 'Private key file' Denial of Service

ZOC Terminal 7.25.5 contains a denial of service vulnerability in the private key file input field that allows attackers to crash the application. Attackers can overwrite the private key file input w…

Remote | Denial of Service
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
7.5 HIGH
CVE-2020-37134 — UltraVNC Viewer 1.2.4.0 - 'VNCServer' Denial of Service

UltraVNC Viewer 1.2.4.0 contains a denial of service vulnerability that allows attackers to crash the application by manipulating VNC Server input. Attackers can generate a malformed 256-byte payload…

vnc_viewer | Remote | Denial of Service
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
7.5 HIGH
CVE-2020-37133 — UltraVNC Launcher 1.2.4.0 - 'RepeaterHost' Denial of Service

UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in the Repeater Host configuration field that allows attackers to crash the application. Attackers can paste an overly long string…

ultravnc | Remote | Denial of Service
Feb 05, 2026 Feb 09, 2026
Feb 05, 2026
Feb 09, 2026
6.7 MEDIUM
CVE-2020-37132 — UltraVNC Launcher 1.2.4.0 - 'Password' Denial of Service

UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in its password configuration properties that allows local attackers to crash the application. Attackers can paste an overly long …

ultravnc | Denial of Service
Feb 05, 2026 Feb 09, 2026
Feb 05, 2026
Feb 09, 2026
6.7 MEDIUM
CVE-2020-37131 — Product Key Explorer 4.2.2.0 - 'Key' Denial of Service

Nsauditor Product Key Explorer 4.2.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting a specially crafted registration key. Attackers can…

product_key_explorer | Denial of Service
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
7.5 HIGH
CVE-2020-37130 — Nsauditor 3.2.0.0 - 'Name' Denial of Service

Nsauditor 3.2.0.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can create a malicious payload of 1000 byte…

nsauditor | Remote | Denial of Service
Feb 05, 2026 Feb 09, 2026
Feb 05, 2026
Feb 09, 2026
9.8 CRITICAL
CVE-2020-37129 — Memu Play 7.1.3 - Insecure Folder Permissions

Memu Play 7.1.3 contains an insecure folder permissions vulnerability that allows low-privileged users to modify the MemuService.exe executable. Attackers can replace the service executable with a ma…

memu | Remote | Misconfiguration
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
6.7 MEDIUM
CVE-2020-37128 — ZOC Terminal 7.25.5 - 'Script' Denial of Service

ZOC Terminal 7.25.5 contains a script processing vulnerability that allows local attackers to crash the application by loading a maliciously crafted REXX script file. Attackers can generate an oversi…

| Denial of Service
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
9.8 CRITICAL
CVE-2020-37127 — dnsmasq-utils 2.79-1 - 'dhcp_release' Denial of Service

Dnsmasq-utils 2.79-1 contains a buffer overflow vulnerability in the dhcp_release utility that allows attackers to cause a denial of service by supplying excessive input. Attackers can trigger a core…

Remote | Memory Corruption
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
9.8 CRITICAL
CVE-2020-37126 — Free Desktop Clock x86 Venetian Blinds Zipper 3.0 - Unicode Stack Overflow (SEH)

Free Desktop Clock 3.0 contains a stack overflow vulnerability in the Time Zones display name input that allows attackers to overwrite Structured Exception Handler (SEH) registers. Attackers can expl…

Remote | Memory Corruption
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
9.8 CRITICAL
CVE-2020-37125 — Edimax Technology EW-7438RPn-v3 Mini 1.27 - Remote Code Execution

Edimax EW-7438RPn-v3 Mini 1.27 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary commands through the /goform/mp endpoint. Attackers can exploi…

ew-7438rpn_mini_firmware ew-7438rpn_mini | Remote | Injection
Feb 05, 2026 Feb 18, 2026
Feb 05, 2026
Feb 18, 2026
9.8 CRITICAL
CVE-2020-37124 — B64dec 1.1.2 - Buffer Overflow (SEH Overflow + Egg Hunter)

B64dec 1.1.2 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler (SEH) with crafted input. Attackers can leverage an e…

Remote | Memory Corruption
Feb 05, 2026 Feb 05, 2026
Feb 05, 2026
Feb 05, 2026
Showing 20 of 5129 Results