| 114448 | Apache Tapestry Arbitrary File Read | critical |
| 114447 | PHP 8.1.x < 8.1.30 Multiple Vulnerabilities | critical |
| 114446 | PHP 8.2.x < 8.2.24 Multiple Vulnerabilities | critical |
| 114445 | PHP 8.3.x < 8.3.12 Multiple Vulnerabilities | critical |
| 114444 | Apache OFBiz < 18.12.16 Remote Code Execution | high |
| 114443 | Social Warfare Plugin for WordPress 4.4.6.4 < 4.4.7.3 Injected Backdoor | critical |
| 114442 | Pods Plugin for WordPress 3.2.3 Injected Backdoor | critical |
| 114441 | PowerPress Podcasting Plugin for WordPress 11.9.3 / 11.9.4 Injected Backdoor | critical |
| 114440 | LiteSpeed Cache Plugin for WordPress < 6.5.0.1 Sensitive Information Exposure | critical |
| 114433 | Ivanti EPM RecordGoodApp SQL Injection | critical |
| 114431 | Next.js < 14.1.1 Server Actions Server-Side Request Forgery | high |
| 114430 | Next.js Remote Patterns Server-Side Request Forgery | medium |
| 114427 | Gutenberg Forms Plugin for WordPress <= 2.2.9 Arbitrary File Upload | critical |
| 114426 | CKEditor < 4.24.0-LTS Multiples Cross-Site Scripting | medium |
| 114425 | CKEditor < 4.25.0-LTS Multiples Cross-Site Scripting | medium |
| 114424 | CKEditor < 5.35.0.1 Cross-Site Scripting | medium |
| 114423 | Nginx 1.25.x < 1.26.1 Multiple Vulnerabilities | medium |
| 114422 | Nginx 1.5.13 < 1.26.2 Buffer Over-read | medium |
| 114421 | Nginx 1.27.0 Buffer Over-read | medium |
| 114420 | Atlassian Confluence 9.0.x < 9.0.1 Multiple Vulnerabilities | high |
| 114419 | Atlassian Confluence 8.6.x < 8.9.5 Multiple Vulnerabilities | high |
| 114418 | Atlassian Confluence 7.20.x < 8.5.14 Multiple Vulnerabilities | high |
| 114417 | Atlassian Confluence < 7.19.26 Multiple Vulnerabilities | high |
| 114416 | Joomla! 3.x < 3.10.17 Multiple Vulnerabilities | critical |
| 114415 | Joomla! 4.x < 4.4.7 Multiple Vulnerabilities | critical |
| 114414 | Joomla! 5.x < 5.1.3 Multiple Vulnerabilities | critical |
| 114413 | Flowise < 2.0.6 Authentication Bypass | high |
| 114411 | Ivanti Virtual Traffic Manager Authentication Bypass | critical |
| 114410 | FCKEditor Unsupported Version | critical |
| 114409 | Gradio 4.3 < 4.13 Local File Read | high |
| 114408 | Gradio Unauthenticated Access | critical |
| 114406 | LiteSpeed Cache Plugin for WordPress < 6.4 Privilege Escalation | critical |
| 114405 | Laravel Telescope Unrestricted Access | high |
| 114404 | Laravel Horizon Unrestricted Access | high |
| 114403 | Laravel Pulse Unrestricted Access | high |
| 114402 | Nginx HTTP API Module Unrestricted Access | high |
| 114401 | Nginx+ Dashboard Unrestricted Access | high |
| 114400 | Apache OFBiz < 18.12.11 Server-Side Request Forgery | high |
| 114399 | Apache OFBiz < 18.12.13 Path Traversal | critical |
| 114397 | AI Engine Plugin for WordPress < 2.4.8 Server-Side Request Forgery | medium |
| 114396 | Apache OFBiz < 18.12.15 Remote Code Execution | critical |
| 114394 | GeoServer Remote Code Execution | critical |
| 114393 | Danswer Unauthenticated Access | critical |
| 114390 | AnythingLLM API Sensitive Information Disclosure | high |
| 114388 | Facade Ignition < 2.5.2 Remote Code Execution | critical |
| 114387 | PaperCut NG/MF < 22.1.3 Path Traversal | critical |
| 114385 | Apache 2.4.x < 2.4.62 Multiple Vulnerabilities | high |
| 114384 | Progress Kemp LoadMaster Remote Command Execution | critical |
| 114383 | Ivanti EPM Cloud Services Appliance < 4.6.0-512 Remote Code Execution | critical |
| 114381 | Apache Hugegraph 1.0.0 < 1.3.0 Remote Command Execution | critical |
