CVE-2025-58xxx

There are 57 CVE in this subgroup.
Last updated: 
← Back to 2025
ID Summary Flags Max Score
CVE-2025-58035 Rejected reason: Not used...
R
CVE-2025-58036 Rejected reason: Not used...
R
CVE-2025-58037 Rejected reason: Not used...
R
CVE-2025-58038 Rejected reason: Not used...
R
CVE-2025-58039 Rejected reason: Not used...
R
CVE-2025-58040 Rejected reason: Not used...
R
CVE-2025-58041 Rejected reason: Not used...
R
CVE-2025-58042 Rejected reason: Not used...
R
CVE-2025-58043 Rejected reason: Not used...
R
CVE-2025-58047 Volto affected by possible DoS by invoking specific URL by anonymous user
CVE-2025-58048 Paymenter Vulnerable to Remote Code Execution via Public File Uploads
CVE-2025-58049 XWiki PDF export jobs store sensitive cookies unencrypted in job statuses
CVE-2025-58050 PCRE2: heap-buffer-overflow read in match_ref due to missing boundary restoration in SCS
E
CVE-2025-58058 github.com/ulikunitz/xz leaks memory when decoding a corrupted multiple LZMA archives
CVE-2025-58059 Valtimo scripting engine can be used to gain access to sensitive data or resources
CVE-2025-58061 OpenEBS Local PV RawFile persistent volume data is world readable
CVE-2025-58062 LSTM-Kirigaya's openmcp-client Vulnerable to RCE in MCP Authorization Flow
CVE-2025-58072 Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in SS1 V...
CVE-2025-58081 Use of hard-coded password issue/vulnerability in SS1 Ver.16.0.0.10 and earlier (Media version:16.0....
CVE-2025-58123 Lack of TLS validation in plugin BGP Monitoring on Checkmk Exchange
CVE-2025-58124 Lack of TLS validation in plugin check-mk-api on Checkmk Exchange
CVE-2025-58125 Lack of TLS validation in plugin Freebox v6 agent on Checkmk Exchange
CVE-2025-58126 Lack of TLS validation in plugin VMware vSAN on Checkmk Exchange
CVE-2025-58127 Lack of TLS validation in plugin Dell Powerscale on Checkmk Exchange
CVE-2025-58158 Harness Affected by Arbitrary File Write in Gitness LFS server
CVE-2025-58192 WordPress WP Bulk Delete Plugin <= 1.3.6 - Broken Access Control Vulnerability
S
CVE-2025-58193 WordPress Uncanny Automator Plugin <= 6.7.0.1 - Broken Access Control Vulnerability
S
CVE-2025-58194 WordPress Bold Page Builder Plugin <= 5.4.3 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58195 WordPress Xpro Elementor Addons Plugin <= 1.4.17 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58196 WordPress UiCore Elements Plugin <= 1.3.4 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58197 WordPress Simple Download Monitor Plugin <= 3.9.34 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58198 WordPress Xpro Theme Builder Plugin <= 1.2.9 - Broken Access Control Vulnerability
S
CVE-2025-58201 WordPress AfterShip Tracking Plugin <= 1.17.17 - Broken Access Control Vulnerability
S
CVE-2025-58202 WordPress Simple Page Access Restriction Plugin <= 1.0.32 - Cross Site Request Forgery (CSRF) Vulnerability
S
CVE-2025-58203 WordPress Solace Extra Plugin <= 1.3.2 - Server Side Request Forgery (SSRF) Vulnerability
S
CVE-2025-58204 WordPress Podlove Podcast Publisher Plugin <= 4.2.5 - Open Redirection Vulnerability
S
CVE-2025-58205 WordPress ElementInvader Addons for Elementor Plugin <= 1.3.6 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58208 WordPress PDF for Elementor Forms + Drag And Drop Template Builder Plugin <= 6.2.0 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58209 WordPress Transcoder Plugin <= 1.4.0 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58211 WordPress Chatbox Manager Plugin <= 1.2.6 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58212 WordPress Epeken All Kurir Plugin <= 2.0.1 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58213 WordPress Booking System Trafft Plugin <= 1.0.14 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58216 WordPress WP Thumbtack Review Slider Plugin <= 2.6 - Cross Site Scripting (XSS) Vulnerability
S
CVE-2025-58217 WordPress Instant Breaking News Plugin <= 1.0 - Cross Site Request Forgery (CSRF) Vulnerability
S
CVE-2025-58218 WordPress Small Package Quotes – USPS Edition Plugin <= 1.3.9 - PHP Object Injection Vulnerability
S
CVE-2025-58322 NAVER MYBOX Explorer for Windows before 3.0.8.133 allows a local attacker to escalate privileges to ...
CVE-2025-58323 NAVER MYBOX Explorer for Windows before 3.0.8.133 allows a local attacker to escalate privileges to ...
CVE-2025-58326 Rejected reason: Not used...
R
CVE-2025-58327 Rejected reason: Not used...
R
CVE-2025-58328 Rejected reason: Not used...
R
CVE-2025-58329 Rejected reason: Not used...
R
CVE-2025-58330 Rejected reason: Not used...
R
CVE-2025-58331 Rejected reason: Not used...
R
CVE-2025-58332 Rejected reason: Not used...
R
CVE-2025-58333 Rejected reason: Not used...
R
CVE-2025-58334 In JetBrains IDE Services before 2025.5.0.1086, 2025.4.2.2164 users without appropriate permissions...
CVE-2025-58335 In JetBrains Junie before 252.284.66, 251.284.66, 243.284.66, 252.284.61, 251.284.61, 243.284.61, 25...
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.