v.26.4.2314

Low Severity Vulnerabilities

Found 875 vulnerabilities at Low severity.

Vulnerability Name

CVE

CWE

Severity

MySQL CVE-2024-21232 Vulnerability (CVE-2024-21232)

CVE-2024-21232

-

Low

MySQL CVE-2024-21237 Vulnerability (CVE-2024-21237)

CVE-2024-21237

-

Low

MySQL CVE-2024-21243 Vulnerability (CVE-2024-21243)

CVE-2024-21243

-

Low

MySQL CVE-2024-21244 Vulnerability (CVE-2024-21244)

CVE-2024-21244

-

Low

MySQL CVE-2024-21247 Vulnerability (CVE-2024-21247)

CVE-2024-21247

-

Low

Oracle Database Server CVE-2024-21251 Vulnerability (CVE-2024-21251)

CVE-2024-21251

-

Low

SharePoint CVE-2024-26251 Vulnerability (CVE-2024-26251)

CVE-2024-26251

-

Low

phpMyFAQ Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2024-29196)

CVE-2024-29196

CWE-22

Low

Moodle Insecure Storage of Sensitive Information Vulnerability (CVE-2024-43427)

CVE-2024-43427

CWE-922

Low

GibbonEdu Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-51337)

CVE-2024-51337

CWE-707

Low

PHP Other Vulnerability (CVE-2024-9026)

CVE-2024-9026

-

Low

Drupal Use of Web Browser Cache Containing Sensitive Information Vulnerability (CVE-2025-13083)

CVE-2025-13083

CWE-525

Low

PHP Interpretation Conflict Vulnerability (CVE-2025-1217)

CVE-2025-1217

CWE-436

Low

Oracle Database Server Incorrect Authorization Vulnerability (CVE-2025-30750)

CVE-2025-30750

CWE-863

Low

Oracle JRE Uncontrolled Resource Consumption Vulnerability (CVE-2025-30752)

CVE-2025-30752

CWE-400

Low

Next.js Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2025-32421)

CVE-2025-32421

CWE-362

Low

EspoCRM Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2025-32789)

CVE-2025-32789

CWE-200

Low

XWikiplatform Incorrect Authorization Vulnerability (CVE-2025-32971)

CVE-2025-32971

CWE-863

Low

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-3635)

CVE-2025-3635

CWE-352

Low

Moodle Use of GET Request Method With Sensitive Query Strings Vulnerability (CVE-2025-3637)

CVE-2025-3637

CWE-598

Low

TYPO3 Unverified Password Change Vulnerability (CVE-2025-47938)

CVE-2025-47938

CWE-620

Low

Next.js Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2025-49005)

CVE-2025-49005

-

Low

XWikiplatform Insufficient UI Warning of Dangerous Operations Vulnerability (CVE-2025-49583)

CVE-2025-49583

CWE-357

Low

Oracle Database Server Improper Privilege Management Vulnerability (CVE-2025-50066)

CVE-2025-50066

CWE-269

Low

MySQL Improper Access Control Vulnerability (CVE-2025-50081)

CVE-2025-50081

CWE-284

Low

MySQL CVE-2025-50098 Vulnerability (CVE-2025-50098)

CVE-2025-50098

-

Low

MySQL CVE-2025-50100 Vulnerability (CVE-2025-50100)

CVE-2025-50100

-

Low

MySQL Uncontrolled Resource Consumption Vulnerability (CVE-2025-50104)

CVE-2025-50104

CWE-400

Low

PrestaShop Exposure of Private Personal Information to an Unauthorized Actor Vulnerability (CVE-2025-51586)

CVE-2025-51586

CWE-359

Low

ReviveAdserver Use of Externally-Controlled Format String Vulnerability (CVE-2025-52666)

CVE-2025-52666

CWE-134

Low

Oracle Database Server Out-of-bounds Read Vulnerability (CVE-2025-53051)

CVE-2025-53051

CWE-125

Low

Hiawatha CVE-2025-57784 Vulnerability (CVE-2025-57784)

CVE-2025-57784

-

Low

TYPO3 Uncaught Exception Vulnerability (CVE-2025-59014)

CVE-2025-59014

CWE-248

Low

MediaWiki Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2025-61634)

CVE-2025-61634

CWE-22

Low

Oracle JRE Improper Access Control Vulnerability (CVE-2025-61748)

CVE-2025-61748

CWE-284

Low

Oracle Database Server Improper Access Control Vulnerability (CVE-2025-61749)

CVE-2025-61749

CWE-284

Low

Pega Infinity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-62184)

CVE-2025-62184

CWE-707

Low

Jenkins Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-67639)

CVE-2025-67639

CWE-352

Low

Grafana Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2026-21725)

CVE-2026-21725

CWE-367

Low

Grafana Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2026-21727)

CVE-2026-21727

CWE-732

Low

Oracle JRE Execution with Unnecessary Privileges Vulnerability (CVE-2026-22008)

CVE-2026-22008

CWE-250

Low

Oracle JRE Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2026-22018)

CVE-2026-22018

CWE-770

Low

Apache Tomcat CVE-2026-24733 Vulnerability (CVE-2026-24733)

CVE-2026-24733

-

Low

Django Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2026-25674)

CVE-2026-25674

CWE-362

Low

EspoCRM Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2026-33659)

CVE-2026-33659

CWE-367

Low

CubeCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2026-35496)

CVE-2026-35496

CWE-22

Low

Roundcube Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2026-35538)

CVE-2026-35538

CWE-707

Low

Django Missing Authorization Vulnerability (CVE-2026-4292)

CVE-2026-4292

CWE-862

Low

Python Improper Input Validation Vulnerability (CVE-2026-4519)

CVE-2026-4519

CWE-20

Low

Jboss EAP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2026-4874)

CVE-2026-4874

CWE-918

Low