Latest CVE Feed
CVE Intelligence
Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.
Score
Vulnerability
Published
9.1
CRITICAL
CVE-2019-25489
— Homey BNB V4 SQL Injection via ajax_refresh_subtotal
Homey BNB V4 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the hosting_id parameter. Attackers can send GET…
Feb 27, 2026
Mar 06, 2026
Feb 27, 2026
Mar 06, 2026