| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-21021 | SAMSUNG Mobile devices 安全漏洞 | Samsung Mobile | Samsung Mobile Devices | - | - | 2026-05-13 04:56:24 | Deep Dive |
| CVE-2026-21020 | SAMSUNG SMR 安全漏洞 | Samsung Mobile | Samsung Mobile Devices | - | - | 2026-05-13 04:56:23 | Deep Dive |
| CVE-2026-21019 | SAMSUNG Mobile devices 安全漏洞 | Samsung Mobile | Samsung Mobile Devices | - | - | 2026-05-13 04:56:22 | Deep Dive |
| CVE-2026-21018 | SAMSUNG Mobile devices 缓冲区错误漏洞 | Samsung Mobile | Samsung Mobile Devices | - | - | 2026-05-13 04:56:21 | Deep Dive |
| CVE-2026-21016 | SAMSUNG Mobile devices 安全漏洞 | Samsung Mobile | Samsung Mobile Devices | - | - | 2026-05-13 04:56:20 | Deep Dive |
| CVE-2026-21015 | SAMSUNG Mobile devices 安全漏洞 | Samsung Mobile | Samsung Mobile Devices | - | - | 2026-05-13 04:56:18 | Deep Dive |
| CVE-2026-7051 | Blog2Social: Social Media Auto Post & Scheduler <= 8.9.0 - Missing Authorization to Authenticated (Subscriber+) Delete Arbitrary B2S Post Records via 'postId' Parameter | pr-gateway | Blog2Social: Social Media Auto Post & Scheduler | Medium | 5.4 | 2026-05-13 04:26:42 | Deep Dive |
| CVE-2025-9989 | Broadstreet <= 1.53.1 - Authenticated (Admin+) Stored Cross-Site Scripting | broadstreetads | Broadstreet | Medium | 4.4 | 2026-05-13 04:26:42 | Deep Dive |
| CVE-2026-6828 | Fluent Forms <= 6.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'permission_message' Shortcode Attribute | techjewel | Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder | Medium | 6.4 | 2026-05-13 04:26:41 | Deep Dive |
| CVE-2025-9987 | Broadstreet <= 1.53.1 - Authenticated (Subscriber+) Information Disclosure | broadstreetads | Broadstreet | Medium | 5.3 | 2026-05-13 04:26:41 | Deep Dive |
| CVE-2026-7619 | Charitable <= 1.8.10.4 - Authenticated (Custom+) SQL Injection via 's' Search Parameter | smub | Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More | Medium | 6.5 | 2026-05-13 04:26:40 | Deep Dive |
| CVE-2026-6962 | Cost of Goods: Product Cost & Profit Calculator for WooCommerce <= 4.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | wpcodefactory | Cost of Goods: Product Cost & Profit Calculator for WooCommerce | Medium | 6.4 | 2026-05-13 04:26:40 | Deep Dive |
| CVE-2026-7635🧪 | coreActivity: Activity Logging for WordPress <= 3.0 - Unauthenticated PHP Object Injection via 'user_agent' Log Meta Field | gdragon | coreActivity: Activity Logging for WordPress | High | 8.1 | 2026-05-13 04:26:39 | Deep Dive |
| CVE-2025-9988 | Broadstreet <= 1.53.1 - Missing Authorization to Authenticated (Subscriber+) Advertiser Creation | broadstreetads | Broadstreet | Medium | 4.3 | 2026-05-13 04:26:39 | Deep Dive |
| CVE-2025-14755 | Cost Calculator Builder <= 4.0.1 - Unauthenticated Price Manipulation and Insecure Direct Object Reference | stylemix | Cost Calculator Builder | Medium | 5.3 | 2026-05-13 03:26:52 | Deep Dive |
| CVE-2026-6888 | SQL Injection Vulnerability | Advantech | SaaS Composer | High | 7.2 | 2026-05-13 03:16:25 | Deep Dive |
| CVE-2024-36315 | AMD多款产品 安全漏洞 | AMD | AMD EPYC™ Series 9004 Processors | - | - | 2026-05-13 03:07:34 | Deep Dive |
| CVE-2025-61972 | AMD多款产品 安全漏洞 | AMD | AMD EPYC™ 9004 Series Processors | - | - | 2026-05-13 03:03:31 | Deep Dive |
| CVE-2025-61971 | AMD多款产品 安全漏洞 | AMD | AMD EPYC™ 9004 Series Processors | - | - | 2026-05-13 03:02:56 | Deep Dive |
| CVE-2025-62627 | VMware ESXi 安全漏洞 | AMD | ESXi 8.x and ESXi 9.x hosts using AMD-Pensando DPU products | - | - | 2026-05-13 02:59:16 | Deep Dive |