Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2025
CVE-2025-6542
An arbitrary OS command may be executed on the product by a remote unauthenticated attacker.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-10-21
CVE-2025-7850
A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways.
CVSS Score
7.2
EPSS Score
0.018
Published
2025-10-21
CVE-2025-7851
An attacker may obtain the root shell on the underlying OS system with the restricted conditions on Omada gateways.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-10-21
CVE-2025-6541
An arbitrary OS command may be executed on the product by the user who can log in to the web management interface.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-10-21
CVE-2025-54764
Mbed TLS before 3.6.5 allows a local timing attack against certain RSA operations, and direct calls to mbedtls_mpi_mod_inv or mbedtls_mpi_gcd.
CVSS Score
6.2
EPSS Score
0.0
Published
2025-10-20
CVE-2025-12001
Lack of application manifest sanitation could lead to potential stored XSS.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-10-20
CVE-2025-60783
There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-10-20
CVE-2025-60781
PHP Education Manager v1.0 is vulnerable to Cross Site Scripting (XSS) in the worksheet.php file via the participant_name parameter.
CVSS Score
6.1
EPSS Score
0.001
Published
2025-10-20
CVE-2025-8048
External Control of File Name or Path vulnerability in opentext Flipper allows Path Traversal. The vulnerability could allow a user to submit a stored local file path and then download the specified file from the system by requesting the stored document ID. This issue affects Flipper: 3.1.2.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-10-20
CVE-2025-8049
Insufficient Granularity of Access Control vulnerability in opentext Flipper allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow a low-privilege user to elevate privileges within the application. This issue affects Flipper: 3.1.2.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-10-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved