U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
Icon for New NVD Communications and Status Updates Page
New Communications Page
The NVD now supports CVSS version 4.0!
CVSS v4.0 Support
The letters N V D typed out in binary
2.0 APIs

The NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance. The NVD includes databases of security checklist references, security-related software flaws, product names, and impact metrics.

For information on how to cite the NVD, including the database's Digital Object Identifier (DOI), please consult NIST's Public Data Repository.

Last 20 Scored Vulnerability IDs & Summaries CVSS Severity

  • CVE-2023-23354 - A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to bypass security mechanisms or read applicati... read CVE-2023-23354
    Published: December 18, 2024; 9:15:21 PM -0500

    V3.1: 8.7 HIGH

  • CVE-2023-23357 - A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to bypass security mechanisms or read ... read CVE-2023-23357
    Published: December 18, 2024; 9:15:22 PM -0500

  • CVE-2025-26627 - Improper neutralization of special elements used in a command ('command injection') in Azure Arc allows an authorized attacker to elevate privileges locally.
    Published: March 11, 2025; 1:16:38 PM -0400

  • CVE-2025-55089 - In FileX before 6.4.2, the file support module for Eclipse Foundation ThreadX, there was a possible buffer overflow in the FileX RAM disk driver. It could cause a remote execurtion after receiving a crafted sequence of packets
    Published: October 16, 2025; 3:15:33 AM -0400

    V3.1: 9.8 CRITICAL

  • CVE-2025-30899 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpeverest User Registration allows Stored XSS. This issue affects User Registration: from n/a through 4.0.3.
    Published: March 27, 2025; 7:15:51 AM -0400

    V3.1: 4.8 MEDIUM

  • CVE-2026-23493 - Pimcore is an Open Source Data & Experience Management Platform. Prior to 12.3.1 and 11.5.14, the http_error_log file stores the $_COOKIE and $_SERVER variables, which means sensitive information such as database passwords, cookie session data, an... read CVE-2026-23493
    Published: January 15, 2026; 12:16:08 PM -0500

    V3.1: 4.9 MEDIUM

  • CVE-2026-23494 - Pimcore is an Open Source Data & Experience Management Platform. Prior to 12.3.1 and 11.5.14, the application fails to enforce proper server-side authorization checks on the API endpoint responsible for reading or listing static routes. In Pimcore... read CVE-2026-23494
    Published: January 15, 2026; 12:16:08 PM -0500

    V3.1: 6.5 MEDIUM

  • CVE-2026-23492 - Pimcore is an Open Source Data & Experience Management Platform. Prior to 12.3.1 and 11.5.14, an incomplete SQL injection patch in the Admin Search Find API allows an authenticated attacker to perform blind SQL injection. Although CVE-2023-30848 a... read CVE-2026-23492
    Published: January 14, 2026; 2:16:48 PM -0500

    V3.1: 4.9 MEDIUM

  • CVE-2025-8944 - The OceanWP WordPress theme before 4.1.2 is vulnerable to an option update due to a missing capability check on one of its AJAX request handler, allowing any authenticated users, such as subscriber to update the darkMod` setting.
    Published: September 05, 2025; 2:15:33 AM -0400

  • CVE-2025-15236 - QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a Path Traversal vulnerability, allowing authenticated remote attackers to read folder names under the specified path by exploiting an Absolute Path Traversal vulnerability.
    Published: January 05, 2026; 3:15:57 AM -0500

    V3.1: 4.3 MEDIUM

  • CVE-2025-15237 - QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a Path Traversal vulnerability, allowing authenticated remote attackers to read folder names under the specified path by exploiting an Absolute Path Traversal vulnerability.
    Published: January 05, 2026; 3:15:57 AM -0500

    V3.1: 4.3 MEDIUM

  • CVE-2025-15235 - QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a Missing Authorization vulnerability, allowing authenticated remote attackers to modify specific network packet parameters, enabling certain system functions to access other user... read CVE-2025-15235
    Published: January 05, 2026; 3:15:57 AM -0500

    V3.1: 6.5 MEDIUM

  • CVE-2025-15240 - QOCA aim AI Medical Cloud Platform developed by Quanta Computer has an Arbitrary File Upload vulnerability, allowing authenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.
    Published: January 05, 2026; 4:15:54 AM -0500

    V3.1: 8.8 HIGH

  • CVE-2025-15238 - QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.
    Published: January 05, 2026; 3:15:57 AM -0500

    V3.1: 6.5 MEDIUM

  • CVE-2025-15239 - QOCA aim AI Medical Cloud Platform developed by Quanta Computer has a SQL Injection vulnerability, allowing authenticated remote attackers to inject arbitrary SQL commands to read database contents.
    Published: January 05, 2026; 4:15:54 AM -0500

    V3.1: 6.5 MEDIUM

  • CVE-2026-0567 - A vulnerability was detected in code-projects Content Management System 1.0. The affected element is an unknown function of the file /pages.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote.... read CVE-2026-0567
    Published: January 02, 2026; 1:15:54 PM -0500

    V3.1: 9.8 CRITICAL

  • CVE-2026-0566 - A security vulnerability has been detected in code-projects Content Management System 1.0. Impacted is an unknown function of the file /admin/edit_posts.php. The manipulation of the argument image leads to unrestricted upload. The attack is possib... read CVE-2026-0566
    Published: January 02, 2026; 12:16:25 PM -0500

    V3.1: 9.8 CRITICAL

  • CVE-2025-10215 - DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allows attackers with local access to execute arbitrary code by placing a FREngine.dll file of their choice in the 'C:\Users\Public\AppData\Local\UPDF\F... read CVE-2025-10215
    Published: September 10, 2025; 8:15:32 AM -0400

    V3.1: 7.8 HIGH

  • CVE-2025-39857 - In the Linux kernel, the following vulnerability has been resolved: net/smc: fix one NULL pointer dereference in smc_ib_is_sg_need_sync() BUG: kernel NULL pointer dereference, address: 00000000000002ec PGD 0 P4D 0 Oops: Oops: 0000 [#1] SMP PTI C... read CVE-2025-39857
    Published: September 19, 2025; 12:15:44 PM -0400

    V3.1: 5.5 MEDIUM

  • CVE-2025-39860 - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen() syzbot reported the splat below without a repro. In the splat, a single thread calling bt_accept_dequeue() freed sk... read CVE-2025-39860
    Published: September 19, 2025; 12:15:44 PM -0400

    V3.1: 7.8 HIGH

Created September 20, 2022 , Updated August 27, 2024