Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2025-9428
Zohocorp ManageEngine Analytics Plus versions 6171 and prior are vulnerable to authenticated SQL Injection via the key update api.
CVSS Score
8.3
EPSS Score
0.002
Published
2025-10-21
CVE-2025-7473
Zohocorp ManageEngine EndPoint Central versions 11.4.2516.1 and prior are vulnerable to XML Injection.
CVSS Score
5.2
EPSS Score
0.0
Published
2025-10-21
CVE-2025-7850
A command injection vulnerability may be exploited after the admin's authentication on the web portal on Omada gateways.
CVSS Score
7.2
EPSS Score
0.008
Published
2025-10-21
CVE-2025-7851
An attacker may obtain the root shell on the underlying OS system with the restricted conditions on Omada gateways.
CVSS Score
9.8
EPSS Score
0.0
Published
2025-10-21
CVE-2025-60781
PHP Education Manager v1.0 is vulnerable to Cross Site Scripting (XSS) in the worksheet.php file via the participant_name parameter.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-10-20
CVE-2025-61932
Known exploited
Lanscope Endpoint Manager (On-Premises) (Client program (MR) and Detection agent (DA)) improperly verifies the origin of incoming requests, allowing an attacker to execute arbitrary code by sending specially crafted packets.
CVSS Score
9.8
EPSS Score
0.24
Published
2025-10-20
CVE-2025-11944
A vulnerability was determined in givanz Vvveb up to 1.0.7.3. This affects the function Import of the file admin/controller/tools/import.php of the component Raw SQL Handler. This manipulation causes sql injection. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. Patch name: 52204b4a106b2fb02d16eee06a88a1f2697f9b35. It is recommended to apply a patch to fix this issue.
CVSS Score
4.7
EPSS Score
0.0
Published
2025-10-19
CVE-2025-57164
Flowise through v3.0.4 is vulnerable to remote code execution via unsanitized evaluation of user input in the "Supabase RPC Filter" field.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-10-17
CVE-2025-60361
radare2 v5.9.8 and before contains a memory leak in the function bochs_open.
CVSS Score
3.3
EPSS Score
0.0
Published
2025-10-17
CVE-2025-60360
radare2 v5.9.8 and before contains a memory leak in the function r2r_subprocess_init.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-10-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved