Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2025-47806
In GStreamer through 1.26.1, the subparse plugin's parse_subrip_time function may write data past the bounds of a stack buffer, leading to a crash.
CVSS Score
5.6
EPSS Score
0.001
Published
2025-08-07
CVE-2025-47807
In GStreamer through 1.26.1, the subparse plugin's subrip_unescape_formatting function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-08-07
CVE-2025-47808
In GStreamer through 1.26.1, the subparse plugin's tmplayer_parse_line function may dereference a NULL pointer while parsing a subtitle file, leading to a crash.
CVSS Score
5.6
EPSS Score
0.001
Published
2025-08-07
CVE-2025-55077
Tyler Technologies ERP Pro 9 SaaS allows an authenticated user to escape the application and execute limited operating system commands within the remote Microsoft Windows environment with the privileges of the authenticated user. Tyler Technologies deployed hardened remote Windows environment settings to all ERP Pro 9 SaaS customer environments as of 2025-08-01.
CVSS Score
7.4
EPSS Score
0.0
Published
2025-08-07
CVE-2025-50692
FoxCMS <=v1.2.5 is vulnerable to Code Execution in admin/template_file/editFile.html.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-08-07
CVE-2025-51533
An Insecure Direct Object Reference (IDOR) in Sage DPW v2024_12_004 and below allows unauthorized attackers to access internal forms via sending a crafted GET request.
CVSS Score
5.3
EPSS Score
0.001
Published
2025-08-07
CVE-2023-41525
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the patient_contact parameter in patientsearch.php.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-08-07
CVE-2023-41526
Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in func1.php via the username3 and password3 parameters.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-08-07
CVE-2023-41527
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the password2 parameter in func.php.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-08-07
CVE-2023-41528
Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in contact.php via the txtname, txtphone, and txtmail parameters.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-08-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved