CVEs classified under CWE-698, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2025-6967 — CVSS 8.7 (high): Execution After Redirect (EAR) vulnerability in Sarman Soft Software and Technology Services Industry and Trade Ltd. Co. CMS allows JSON…
CVE-2025-9848 — CVSS 7.3 (high): A security vulnerability has been detected in ScriptAndTools Real Estate Management System 1.0. The affected element is an unknown function…
CVE-2024-2635 — CVSS 7.3 (high): The configuration pages available are not intended to be placed on an Internet facing web server, as they expose file paths to the client…
CVE-2024-2573 — CVSS 7.3 (high): A vulnerability classified as critical has been found in SourceCodester Employee Task Management System 1.0. Affected is an unknown…
CVE-2024-2572 — CVSS 7.3 (high): A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some…
CVE-2024-2571 — CVSS 7.3 (high): A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability…
CVE-2024-2570 — CVSS 7.3 (high): A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. This affects an…
CVE-2024-2569 — CVSS 7.3 (high): A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this issue is some…
CVE-2025-53077 — CVSS 6.5 (medium): An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functions without permissions. An…
CVE-2026-10271 — CVSS 6.3 (medium): A flaw has been found in a4m4 Student-Management-System up to f0c5f6842c5e8c431ff02b5260a565ca844df3a0. The affected element is an unknown…
CVE-2026-3264 — CVSS 6.3 (medium): A vulnerability was determined in go2ismail Free-CRM up to b83c40a90726d5e58f0cc680ffdcaa28a03fb5d1. Affected by this issue is some unknown…
CVE-2026-3262 — CVSS 6.3 (medium): A vulnerability has been found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.20250118. Affected is an unknown…