Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (339825 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2022-34715 1 Microsoft 1 Windows Server 2022 2025-05-29 9.8 Critical
Windows Network File System Remote Code Execution Vulnerability
CVE-2022-34714 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-05-29 8.1 High
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-34712 1 Microsoft 4 Windows 10, Windows 11, Windows Server 2016 and 1 more 2025-05-29 5.5 Medium
Windows Defender Credential Guard Information Disclosure Vulnerability
CVE-2022-34710 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 5.5 Medium
Windows Defender Credential Guard Information Disclosure Vulnerability
CVE-2022-34709 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 6 Medium
Windows Defender Credential Guard Security Feature Bypass Vulnerability
CVE-2022-34708 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-05-29 5.5 Medium
Windows Kernel Information Disclosure Vulnerability
CVE-2025-32928 1 Themegoods 1 Altair 2025-05-29 9.8 Critical
Deserialization of Untrusted Data vulnerability in ThemeGoods Altair allows Object Injection.This issue affects Altair: from n/a through 5.2.2.
CVE-2025-32927 1 Chimpgroup 1 Foodbakery 2025-05-29 9.8 Critical
Deserialization of Untrusted Data vulnerability in Chimpstudio FoodBakery allows Object Injection.This issue affects FoodBakery: from n/a through 3.3.
CVE-2025-48256 1 Xylusthemes 1 Import Social Events 2025-05-29 6.5 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Xylus Themes Import Social Events allows Stored XSS. This issue affects Import Social Events: from n/a through 1.8.5.
CVE-2025-48254 1 Wpfactory 1 Change Add To Cart Button Text For Woocommerce 2025-05-29 6.5 Medium
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Change Add to Cart Button Text for WooCommerce allows Stored XSS. This issue affects Change Add to Cart Button Text for WooCommerce: from n/a through 2.2.2.
CVE-2023-48324 1 Getawesomesupport 1 Awesome Support 2025-05-29 5.4 Medium
Missing Authorization vulnerability in Awesome Support Team Awesome Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Awesome Support: from n/a through 6.1.4.
CVE-2023-49757 1 Getawesomesupport 1 Awesome Support 2025-05-29 5.4 Medium
Missing Authorization vulnerability in Awesome Support Team Awesome Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Awesome Support: from n/a through 6.1.10.
CVE-2023-49857 2 Awesomesupport, Getawesomesupport 2 Awesome Support Wordpress Helpdesk \& Support, Awesome Support 2025-05-29 6.5 Medium
Missing Authorization vulnerability in Awesome Support Team Awesome Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Awesome Support: from n/a through 6.1.7.
CVE-2023-51356 1 Reputeinfosystems 1 Armember 2025-05-29 8.8 High
Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10.
CVE-2023-47837 1 Reputeinfosystems 1 Armember 2025-05-29 8.3 High
Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10.
CVE-2023-45760 1 Gvectors 1 Wpdiscuz 2025-05-29 4.3 Medium
Missing Authorization vulnerability in gVectors Team wpDiscuz allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects wpDiscuz: from n/a through 7.6.3.
CVE-2024-30222 1 Reputeinfosystems 1 Armember 2025-05-29 8.5 High
Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember.This issue affects ARMember: from n/a through 4.0.26.
CVE-2024-30223 1 Reputeinfosystems 1 Armember 2025-05-29 9 Critical
Deserialization of Untrusted Data vulnerability in Repute Infosystems ARMember.This issue affects ARMember: from n/a through 4.0.26.
CVE-2024-35283 1 Mitel 1 Micontact Center Business 2025-05-29 6.1 Medium
A vulnerability in the Ignite component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a stored cross-site scripting (XSS) attack due to insufficient input validation.
CVE-2024-35284 1 Mitel 1 Micontact Center Business 2025-05-29 5.4 Medium
A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient input validation.