Latest CVE Feed
CVE Intelligence
Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.
Score
Vulnerability
Published
7.6
HIGH
CVE-2025-14343
— Reflected XSS in Dokuzsoft Technology's E-Commerce Product
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dokuzsoft Technology Ltd. E-Commerce Product allows Reflected XSS.This issue affects E-Com…
Remote
|
Cross-Site Scripting
Feb 26, 2026
Feb 27, 2026
Feb 26, 2026
Feb 27, 2026
8.6
HIGH
CVE-2026-1198
— SQL Injection in SIMPLE.ERP
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input validation allows an authenticated attacker to prepare a malicious query to the data…
Remote
|
Injection
Feb 26, 2026
Feb 27, 2026
Feb 26, 2026
Feb 27, 2026
7.3
HIGH
CVE-2025-64999
— Cross-site scripting in HTML logs of Synthetic Monitoring test services
Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p43 allows an attacker that can manipulate a host's check output to inject malicious JavaScript into …
Feb 26, 2026
Mar 05, 2026
Feb 26, 2026
Mar 05, 2026