General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-31963 | Improper authentication and missing CSRF protection in the local setup interface component in HCL BigFix IVR version 4.… | Low (2.9) | 2026-01-07 | General-Purpose |
| CVE-2025-31962 | Insufficient session expiration in the Web UI authentication component in HCL BigFix IVR version 4.2 allows an authenti… | Low (2.0) | 2026-01-07 | General-Purpose |
| CVE-2025-31643 | Incorrect Privilege Assignment vulnerability in Dasinfomedia WPCHURCH allows Privilege Escalation.This issue affects WP… | High (8.8) | 2026-01-07 | General-Purpose |
| CVE-2025-15158 | The WP Enable WebP plugin for WordPress is vulnerable to arbitrary file uploads due to improper file type validation in… | High (8.8) | 2026-01-07 | General-Purpose |
| CVE-2025-15058 | The Responsive Pricing Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'table_currency'… | Medium (6.4) | 2026-01-07 | General-Purpose |