Browse CVEs

225 CVEs analyzed. 653 pending.

All Critical High Medium Low
CVE-2020-37055 7.8

CVE-2020-37055 is an unquoted service path vulnerability in SpyHunter 4 that allows local attackers to execute arbitrary code with SYSTEM privileges. ...

Feb 1, 2026
CVE-2020-37061 7.8

CVE-2020-37061 is an unquoted service path vulnerability in BOOTP Turbo 2.0.1214 that allows local attackers to execute arbitrary code with SYSTEM pri...

Feb 1, 2026
CVE-2020-37062 7.8

CVE-2020-37062 is an unquoted service path vulnerability in DHCP Turbo that allows local attackers to execute arbitrary code with elevated privileges....

Feb 1, 2026
CVE-2020-37063 7.8

CVE-2020-37063 is an unquoted service path vulnerability in TFTP Turbo that allows local attackers to execute arbitrary code with elevated SYSTEM priv...

Feb 1, 2026
CVE-2020-37064 7.8

CVE-2020-37064 is an unquoted service path vulnerability in EPSON EasyMP Network Projection software that allows local attackers to execute arbitrary ...

Feb 1, 2026
CVE-2020-37045 7.8

CVE-2020-37045 is an unquoted service path vulnerability in Veritas NetBackup 7.0's INET Daemon service. This allows local attackers to place maliciou...

Feb 1, 2026
CVE-2020-37047 7.8

CVE-2020-37047 is an unquoted service path vulnerability in Deep Instinct Windows Agent that allows local attackers to execute arbitrary code with Loc...

Feb 1, 2026
CVE-2020-37048 7.8

CVE-2020-37048 is an unquoted service path vulnerability in Iskysoft Application Framework Service that allows local attackers to execute arbitrary co...

Feb 1, 2026
CVE-2020-37037 7.8

CVE-2020-37037 is an unquoted service path vulnerability in Avast SecureLine VPN client that allows local attackers to execute arbitrary code with SYS...

Feb 1, 2026
CVE-2021-47918 8.1

Simple CMS 2.1 contains a remote SQL injection vulnerability in the users module that allows authenticated attackers to execute arbitrary SQL commands...

Feb 1, 2026
CVE-2021-47915 8.1

PHP Melody 3.0 contains a remote SQL injection vulnerability in the video edit module that allows authenticated attackers to execute arbitrary SQL com...

Feb 1, 2026
CVE-2021-47909 8.1

Mult-E-Cart Ultimate 2.4 contains SQL injection vulnerabilities in multiple modules (inventory, customer, vendor, order) where attackers with vendor o...

Feb 1, 2026
CVE-2025-48783 7.5

This vulnerability allows remote attackers to delete arbitrary files on the Soar Cloud HRD Human Resource Management System by manipulating file paths...

Jun 6, 2025
CVE-2025-48784 7.5

A missing authorization vulnerability in Soar Cloud HRD Human Resource Management System allows remote attackers to modify system settings without pro...

Jun 6, 2025
CVE-2025-5192 7.5

This vulnerability allows remote attackers to bypass authentication in Soar Cloud HRD Human Resource Management System client applications. Attackers ...

Jun 6, 2025
CVE-2025-48781 7.5

This vulnerability allows remote attackers to read arbitrary files from the Soar Cloud HRD Human Resource Management System by manipulating file paths...

Jun 6, 2025