Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.3

    CVSS31
    CVE-2025-7489

    A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. This issue affects some unknown processing of the file /admin/search-vehicle.php. The manipulation of the argument searchdata leads to sql injection... Read more

    Affected Products : vehicle_parking_management_system
    • Published: Jul. 12, 2025
    • Modified: Jul. 12, 2025

  • 6.3

    CVSS31
    CVE-2025-7490

    A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. Affected is an unknown function of the file /admin/reg-users.php. The manipulation of the argument del leads to sql injection. It is possib... Read more

    Affected Products : vehicle_parking_management_system
    • Published: Jul. 12, 2025
    • Modified: Jul. 12, 2025

  • 6.3

    CVSS31
    CVE-2025-7491

    A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/manage-outgoingvehicle.php. The manipulation of the argument de... Read more

    Affected Products : vehicle_parking_management_system
    • Published: Jul. 12, 2025
    • Modified: Jul. 12, 2025

  • 6.3

    CVSS31
    CVE-2025-7492

    A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/manage-incomingvehicle.php. The manipulation of the argument del leads t... Read more

    Affected Products : vehicle_parking_management_system
    • Published: Jul. 12, 2025
    • Modified: Jul. 12, 2025

  • 6.3

    CVSS31
    CVE-2025-7568

    A vulnerability was found in qianfox FoxCMS up to 1.2.5. It has been classified as critical. Affected is the function batchCope of the file app/admin/controller/Video.php. The manipulation of the argument ids leads to sql injection. It is possible to laun... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 6.3

    CVSS31
    CVE-2025-7481

    A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. This affects an unknown part of the file /users/profile.php. The manipulation of the argument firstname leads to sql injection. It is possi... Read more

    Affected Products : vehicle_parking_management_system
    • Published: Jul. 12, 2025
    • Modified: Jul. 12, 2025

  • 6.3

    CVSS31
    CVE-2025-7560

    A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been declared as critical. This vulnerability affects unknown code of the file /admin/workin-progress-requests.php. The manipulation of the argument teamid leads to sql injec... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 6.3

    CVSS31
    CVE-2025-7561

    A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been rated as critical. This issue affects some unknown processing of the file /admin/team-ontheway-requests.php. The manipulation of the argument teamid leads to sql injecti... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 6.3

    CVSS31
    CVE-2025-7562

    A vulnerability classified as critical has been found in PHPGurukul Online Fire Reporting System 1.2. Affected is an unknown function of the file /admin/new-requests.php. The manipulation of the argument teamid leads to sql injection. It is possible to la... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 6.3

    CVSS31
    CVE-2025-7511

    A vulnerability was found in code-projects Chat System 1.0 and classified as critical. This issue affects some unknown processing of the file /user/update_account.php. The manipulation of the argument musername leads to sql injection. The attack may be in... Read more

    Affected Products : chat_system
    • Published: Jul. 13, 2025
    • Modified: Jul. 13, 2025

  • 6.3

    CVSS31
    CVE-2025-7563

    A vulnerability classified as critical was found in PHPGurukul Online Fire Reporting System 1.2. Affected by this vulnerability is an unknown functionality of the file /admin/completed-requests.php. The manipulation of the argument teamid leads to sql inj... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 6.3

    CVSS31
    CVE-2025-7520

    A vulnerability, which was classified as critical, has been found in PHPGurukul Vehicle Parking Management System 1.13. This issue affects some unknown processing of the file /admin/manage-category.php. The manipulation of the argument del leads to sql in... Read more

    Affected Products : vehicle_parking_management_system
    • Published: Jul. 13, 2025
    • Modified: Jul. 13, 2025

  • 6.3

    CVSS31
    CVE-2025-7522

    A vulnerability has been found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/bwdates-reports-details.php. The manipulation of the argument fro... Read more

    Affected Products : vehicle_parking_management_system
    • Published: Jul. 13, 2025
    • Modified: Jul. 13, 2025

  • 5.9

    CVSS31
    CVE-2025-1735

    In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* pgsql and pdo_pgsql escaping functions do not check if the underlying quoting functions returned errors. This could cause crashes if Postgres server rejects the string as... Read more

    Affected Products : php
    • Published: Jul. 13, 2025
    • Modified: Jul. 13, 2025

  • 5.9

    CVSS31
    CVE-2021-4458

    The Modern Events Calendar Lite plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter of the 'wp_ajax_mec_load_single_page' AJAX action in all versions up to, and including, 6.3.0 due to insufficient escaping on the user supplied para... Read more

    Affected Products : modern_events_calendar_lite
    • Published: Jul. 12, 2025
    • Modified: Jul. 12, 2025

  • 5.9

    CVSS31
    CVE-2025-6491

    In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 when parsing XML data in SOAP extensions, overly large (>2Gb) XML namespace prefix may lead to null pointer dereference. This may lead to crashes and affect... Read more

    Affected Products : php
    • Published: Jul. 13, 2025
    • Modified: Jul. 13, 2025

  • 5.3

    CVSS31
    CVE-2025-7565

    A vulnerability, which was classified as critical, was found in LB-LINK BL-AC3600 up to 1.0.22. This affects the function geteasycfg of the file /cgi-bin/lighttpd.cgi of the component Web Management Interface. The manipulation of the argument Password lea... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 5.3

    CVSS31
    CVE-2025-7573

    A vulnerability, which was classified as critical, has been found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600, BL-AX1800, BL-AX5400P and BL-WR9000 up to 20250702. This issue affects the function bs_GetManPwd in the library libblinkapi.so of the file /c... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 5.3

    CVSS31
    CVE-2025-7572

    A vulnerability classified as critical was found in LB-LINK BL-AC1900, BL-AC2100_AZ3, BL-AC3600, BL-AX1800, BL-AX5400P and BL-WR9000 up to 20250702. This vulnerability affects the function bs_GetHostInfo in the library libblinkapi.so of the file /cgi-bin/... Read more

    Affected Products :
    • Published: Jul. 14, 2025
    • Modified: Jul. 14, 2025

  • 5.3

    CVSS31
    CVE-2025-7546

    A vulnerability, which was classified as problematic, has been found in GNU Binutils 2.45. Affected by this issue is the function bfd_elf_set_group_contents of the file bfd/elf.c. The manipulation leads to out-of-bounds write. It is possible to launch the... Read more

    Affected Products : binutils
    • Published: Jul. 13, 2025
    • Modified: Jul. 13, 2025
Showing 20 of 120 Results
© cvefeed.io
Latest DB Update: Jul. 14, 2025 7:44