CVE.report search for "CVE-2025-22804"
Listed below are 50 relevant search results for "CVE-2025-22804" based on Vendor, Software, and CVE description
These results are gathered from attempted matches with listed vendor and software data, as well as a keyword search in the description of all known CVEs.
If you notice a "Not Listed" in either the vendor or software columns, the underlying source record does not currently include normalized affected-product data.
Search Results
| CVE ID | Vendor | Software | Description |
|---|---|---|---|
| CVE-2026-40046 | Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for "CVE... | ||
| CVE-2026-40035 | Ryandfir | Unfurl | Unfurl through 2025.08 contains an improper input validation vulnerability in config parsing that enables Flask debug mode by... |
| CVE-2026-39973 | Apktool is a tool for reverse engineering Android APK files. In versions 3.0.0 and 3.0.1, a path traversal vulnerability in `... | ||
| CVE-2026-39424 | Maxkb | Maxkb | MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, the chat export feature is vulnerable to Im... |
| CVE-2026-39417 | Maxkb | Maxkb | MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain an incomplete fix for CVE-2025-53928, w... |
| CVE-2026-39414 | Minio | Minio | MinIO is a high-performance object storage system. From RELEASE.2018-08-18T03-49-57Z to before RELEASE.2025-12-20T04-58-37Z, ... |
| CVE-2026-39337 | Churchcrm | Churchcrm | ChurchCRM is an open-source church management system. Prior to 7.1.0, critical pre-authentication remote code execution vulne... |
| CVE-2026-35465 | SecureDrop Client is a desktop app for journalists to securely communicate with sources and handle submissions on the SecureD... | ||
| CVE-2026-35177 | Vim | Vim | Vim is an open source, command line text editor. Prior to 9.2.0280, a path traversal bypass in Vim's zip.vim plugin allows ov... |
| CVE-2026-34619 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Director... |
| CVE-2026-34617 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could result... | ||
| CVE-2026-34615 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could... | ||
| CVE-2026-34614 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an ... | ||
| CVE-2026-34477 | The fix for CVE-2025-68161 https://logging.apache.org/security.html#CVE-2025-68161 was incomplete: it addressed hostname ve... | ||
| CVE-2026-33806 | Fastify | Fastify | Impact: Fastify applications using schema.body.content for per-content-type body validation can have validation bypassed ent... |
| CVE-2026-33693 | Lemmy is a link aggregator and forum for the fediverse. Prior to version 0.7.0-beta.9, the `v4_is_invalid()` function in `act... | ||
| CVE-2026-33392 | Jetbrains | Youtrack | In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE via sandbox bypass |
| CVE-2026-33045 | Home-assistant | Home-assistant | Home Assistant is open source home automation software that puts local control and privacy first. Starting in version 2025.02... |
| CVE-2026-32990 | Apache | Tomcat | Improper Input Validation vulnerability in Apache Tomcat due to an incomplete fix of CVE-2025-66614. This issue affects Apac... |
| CVE-2026-32613 | Spinnaker is an open source, multi-cloud continuous delivery platform. Echo like some other services, uses SPeL (Spring Expre... | ||
| CVE-2026-32604 | Spinnaker is an open source, multi-cloud continuous delivery platform. In versions prior to 2026.1.0, 2026.0.1, 2025.4.2, and... | ||
| CVE-2026-31049 | An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to execute arbitrary code and escalate privileges v... | ||
| CVE-2026-27308 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could... |
| CVE-2026-27307 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could... |
| CVE-2026-27306 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could result ... |
| CVE-2026-27305 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Director... |
| CVE-2026-27304 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could result ... |
| CVE-2026-27303 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could... | ||
| CVE-2026-27282 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Input Validation vulnerability that could result ... |
| CVE-2026-27246 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An att... | ||
| CVE-2026-27245 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an ... | ||
| CVE-2026-27243 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an ... | ||
| CVE-2026-26477 | Dokuwiki | Dokuwiki | An issue in Dokuwiki v.2025-05-14b "Librarian" [56.2] allows a remote attacker to cause a denial of service via the media_upl... |
| CVE-2026-25534 | ### Impact Spinnaker updated URL Validation logic on user input to provide sanitation on user inputted URLs for clouddriver. ... | ||
| CVE-2026-23198 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: KVM: Don't clobber irqfd routing type when deassigning i... |
| CVE-2026-22676 | Barracuda RMM versions prior to 2025.2.2 contain a privilege escalation vulnerability that allows local attackers to gain SY... | ||
| CVE-2026-21618 | Hex | Hexpm | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in hexpm hexpm/hexp... |
| CVE-2026-21331 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an ... | ||
| CVE-2026-6624 | A weakness has been identified in BichitroGan ISP Billing Software 2025.3.20. Affected is an unknown function of the file /?\... | ||
| CVE-2026-6623 | A security flaw has been discovered in BichitroGan ISP Billing Software 2025.3.20. This impacts an unknown function of the fi... | ||
| CVE-2026-6622 | A vulnerability was identified in BichitroGan ISP Billing Software 2025.3.20. This affects an unknown function of the file /?... | ||
| CVE-2026-6587 | A security flaw has been discovered in vibrantlabsai RAGAS up to 0.4.3. The affected element is the function _try_process_loc... | ||
| CVE-2026-6060 | A vulnerability in the SQL Box in the admin interface of OTRS leads to an uncontrolled resource consumption leading to a DoS ... | ||
| CVE-2026-5709 | Amazon | Research And Engineering Studio | Unsanitized input in the FileBrowser API in AWS Research and Engineering Studio (RES) version 2024.10 through 2025.12.01 migh... |
| CVE-2026-5707 | Amazon | Research And Engineering Studio | Unsanitized input in an OS command in the virtual desktop session name handling in AWS Research and Engineering Studio (RES)�... |
| CVE-2026-5600 | A new API endpoint introduced in pretix 2025 that is supposed to return all check-in events of a specific event in fact retu... | ||
| CVE-2026-5082 | Amon2::Plugin::Web::CSRFDefender versions from 7.00 through 7.03 for Perl generate an insecure session id. The generate_sess... | ||
| CVE-2026-5031 | A vulnerability was found in BichitroGan ISP Billing Software 2025.3.20. Impacted is an unknown function of the file /?_route... | ||
| CVE-2026-4989 | Devolutions | Devolutions Server | Improper input validation in the gateway health check feature in Devolutions Server allows a low-privileged authenticated use... |
| CVE-2026-4965 | A vulnerability was detected in letta-ai letta 0.16.4. This issue affects the function resolve_type of the file letta/functio... | ||