CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-14267 – Unintended temporary cached data included in a structure only copy intended to be empty of data
https://notcve.org/view.php?id=CVE-2025-14267
19 Dec 2025 — Incomplete removal of sensitive information before transfer vulnerability in M-Files Corporation M-Files Server allows data leak exposure affecting versions before 25.12.15491.7 • https://product.m-files.com/security-advisories/cve-2025-14267 • CWE-212: Improper Removal of Sensitive Information Before Storage or Transfer •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-66908
https://notcve.org/view.php?id=CVE-2025-66908
19 Dec 2025 — This bypass enables potential server-side code execution, stored XSS, or information disclosure depending on how uploaded files are processed and served. • https://github.com/Xzzz111/public_cve_report/blob/main/CVE-2025-66908_report.md • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0CVE-2024-58320 – Kentico Xperience <= 13.0.159 Authentication Information Disclosure
https://notcve.org/view.php?id=CVE-2024-58320
18 Dec 2025 — An information disclosure vulnerability in Kentico Xperience allows public users to access sensitive administration interface hostname details during authentication. • https://www.vulncheck.com/advisories/kentico-xperience-authentication-information-disclosure • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-50686 – Kentico Xperience <= 12.0 Portal Engine Form Control Information Disclosure
https://notcve.org/view.php?id=CVE-2022-50686
18 Dec 2025 — An information disclosure vulnerability in Kentico Xperience allows attackers to view sensitive stack trace details via Portal Engine form control error messages. • https://www.vulncheck.com/advisories/kentico-xperience-portal-engine-form-control-information-disclosure • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-25230 – Kentico Xperience <= 12.0.0 User Widget Information Disclosure
https://notcve.org/view.php?id=CVE-2019-25230
18 Dec 2025 — An information disclosure vulnerability in Kentico Xperience allows authenticated users to view sensitive system objects through the live site widget properties dialog. • https://www.vulncheck.com/advisories/kentico-xperience-user-widget-information-disclosure • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2019-25228 – Kentico Xperience <= 12.0.47 Virtual Context Information Disclosure
https://notcve.org/view.php?id=CVE-2019-25228
18 Dec 2025 — An information disclosure vulnerability in Kentico Xperience allows attackers to leak virtual context URLs via the HTTP Referer header when users interact with third-party domains. • https://www.vulncheck.com/advisories/kentico-xperience-virtual-context-information-disclosure • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-64469 – Stack-based Buffer Overflow in LVResource::DetachResource() in NI LabVIEW
https://notcve.org/view.php?id=CVE-2025-64469
18 Dec 2025 — This vulnerability may result in information disclosure or arbitrary code execution. • https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/multiple-memory-corruption-vulnerabilities-in-ni-labview.html • CWE-121: Stack-based Buffer Overflow •
CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-64468 – Use-after-Free in sentry!sentry_span_set_data() in NI LabVIEW
https://notcve.org/view.php?id=CVE-2025-64468
18 Dec 2025 — This vulnerability may result in information disclosure or arbitrary code execution. • https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/multiple-memory-corruption-vulnerabilities-in-ni-labview.html • CWE-416: Use After Free •
CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-64467 – Out-of-Bounds Read in LVResFile::FindRsrcListEntry() in NI LabVIEW
https://notcve.org/view.php?id=CVE-2025-64467
18 Dec 2025 — This vulnerability may result in information disclosure or arbitrary code execution. • https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/multiple-memory-corruption-vulnerabilities-in-ni-labview.html • CWE-125: Out-of-bounds Read •
CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0CVE-2025-64466 – Out-of-Bounds Read in lvre!ExecPostedProcRecPost() in NI LabVIEW
https://notcve.org/view.php?id=CVE-2025-64466
18 Dec 2025 — This vulnerability may result in information disclosure or arbitrary code execution. • https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/multiple-memory-corruption-vulnerabilities-in-ni-labview.html • CWE-125: Out-of-bounds Read •