General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-39448 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Crocoblock JetEle… | Medium (6.5) | 2025-05-19 | General-Purpose |
| CVE-2025-39412 | Missing Authorization vulnerability in Averta Master Slider.This issue affects Master Slider: from n/a through 3.10.8. | Medium (4.3) | 2025-05-19 | General-Purpose |
| CVE-2025-39398 | Missing Authorization vulnerability in Themovation Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue.This iss… | Medium (4.3) | 2025-05-19 | General-Purpose |
| CVE-2025-39396 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability i… | High (7.5) | 2025-05-19 | General-Purpose |
| CVE-2025-27010 | Path Traversal: '.../...//' vulnerability in bslthemes Tastyc allows PHP Local File Inclusion.This issue affects Tastyc… | High (8.1) | 2025-05-19 | General-Purpose |