General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-13615 | The StreamTube Core plugin for WordPress is vulnerable to Arbitrary User Password Change in versions up to, and includi… | Critical (9.8) | 2025-11-30 | General-Purpose |
| CVE-2025-66291 | OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the interview attachment … | Medium (4.3) | 2025-11-29 | General-Purpose |
| CVE-2025-66290 | OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the application’s recruit… | Medium (4.3) | 2025-11-29 | General-Purpose |
| CVE-2025-66289 | OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the application does not … | High (8.8) | 2025-11-29 | General-Purpose |
| CVE-2025-66225 | OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the password reset workfl… | High (8.8) | 2025-11-29 | General-Purpose |