Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE Database & AI Vulnerability Analysis

Browse 94+ CVEs from NVD & CNNVD with AI-powered analysis, AI-generated PoCs, KEV/EPSS tracking, and daily security intelligence. Filter by vendor, product, severity, or CWE.

Trusted by security teams 450+security practitioners120+company & university domains· security vendors · in-house teams · academia · bug-bounty hunters
Clear Filters
Found 94 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-13362 Freemius <= 2.10.1 - Reflected DOM-Based Cross-Site Scripting via url Parameter sebetGo Fetch Jobs (for WP Job Manager) Medium 6.1 2026-05-01 05:29:54 Deep Dive
CVE-2026-41016 Apache Airflow Providers SMTP: No certificate validation on SMTP STARTTLS connections in SMTP provider Apache Software FoundationApache Airflow Providers SMTP 中危 -2026-04-30 09:09:46 Deep Dive
CVE-2026-4162 Gravity SMTP <= 2.1.4 - Missing Authorization to Authenticated (Subscriber+) Plugin Uninstall RocketGeniusGravity SMTP High 7.1 2026-04-10 09:25:56 Deep Dive
CVE-2026-4020📌💣 Gravity SMTP <= 2.1.4 - Unauthenticated Sensitive Information Exposure via REST API EPSS 0.13RocketGeniusGravity SMTP High 7.5 2026-03-31 01:24:57 Deep Dive
CVE-2026-32538 WordPress SMTP Mailer plugin <= 1.1.24 - Sensitive Data Exposure vulnerability Noor AlamSMTP Mailer High 7.5 2026-03-25 16:15:11 Deep Dive
CVE-2026-32519 WordPress Bit SMTP plugin <= 1.2.2 - Broken Authentication vulnerability Bit AppsBit SMTP Critical 9.0 2026-03-25 16:15:07 Deep Dive
CVE-2026-3090 Post SMTP <= 3.8.0 - Unauthenticated Stored Cross-Site Scripting via 'event_type' saadiqbalPost SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App High 7.2 2026-03-18 15:28:29 Deep Dive
CVE-2026-2559 Post SMTP <= 3.8.0 - Missing Authorization to Authenticated (Subscriber+) Office 365 OAuth Configuration Overwrite saadiqbalPost SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App Medium 5.3 2026-03-18 15:28:28 Deep Dive
CVE-2021-47870 GetSimple CMS My SMTP Contact Plugin 1.1.2 - Stored XSS GetSimple CMSMy SMTP Contact Plugin--2026-01-21 17:32:09 Deep Dive
CVE-2021-47778 GetSimple CMS My SMTP Contact Plugin 1.1.2 - PHP Code Injection Get-SimpleMy SMTP Contact Plugin--2026-01-21 17:29:48 Deep Dive
CVE-2021-47830 GetSimple CMS My SMTP Contact Plugin 1.1.1 - CSRF GetSimple CMSMy SMTP Contact Plugin--2026-01-21 17:27:34 Deep Dive
CVE-2025-62123 WordPress WP Gmail SMTP plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerability inkthemesWP Gmail SMTP Medium 4.3 2025-12-31 16:26:36 Deep Dive
CVE-2025-62762 WordPress SMTP Mail plugin <= 1.3.51 - Cross Site Request Forgery (CSRF) vulnerability photoboxoneSMTP Mail Medium 4.3 2025-12-09 14:52:23 Deep Dive
CVE-2025-67563 WordPress Post SMTP plugin <= 3.6.1 - Broken Access Control vulnerability Saad IqbalPost SMTP Medium 5.3 2025-12-09 14:14:11 Deep Dive
CVE-2025-12887 Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App <= 3.6.1 - Missing Authorization to Authenticated (Subscriber+) OAuth Token Update saadiqbalPost SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App Medium 5.4 2025-12-03 12:29:54 Deep Dive
CVE-2025-13516 SureMail – SMTP and Email Logs Plugin with Amazon SES, Postmark, and Other Providers <= 1.9.0 - Unauthenticated Arbitrary File Upload brainstormforceSureMail – SMTP and Email Logs Plugin with Amazon SES, Postmark, and Other Providers High 8.1 2025-12-02 08:24:55 Deep Dive
CVE-2025-11833📌💣 Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App <= 3.6.0 - Missing Authorization to Account Takeover via Unauthenticated Email Log Disclosure EPSS 0.15saadiqbalPost SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App Critical 9.8 2025-11-01 03:34:36 Deep Dive
CVE-2025-53232 WordPress WP Gmail SMTP plugin <= 1.0.7 - Sensitive Data Exposure vulnerability inkthemesWP Gmail SMTP Medium 5.8 2025-10-22 14:32:29 Deep Dive
CVE-2025-57992 WordPress Mail Baby SMTP plugin <= 2.8 - Cross Site Request Forgery (CSRF) vulnerability InterServerMail Baby SMTP Medium 4.3 2025-09-22 18:24:21 Deep Dive
CVE-2025-9219 Post SMTP <= 3.4.1 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Option Update saadiqbalPost SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App Medium 4.3 2025-09-03 08:27:23 Deep Dive

Frequently Asked Questions

340,000+ CVEs aggregated from NVD and CNNVD, updated daily with AI-generated Chinese translations.

Basic CVE data is completely free. AI PoC generation and premium intelligence features require a Pro or Pro+ subscription.

When a CVE has no public proof-of-concept, Shenlong AI automatically generates exploit code and a technical analysis report based on the vulnerability description and references.

Yes. Shenlong AI has translated NVD English descriptions into Chinese, so you can search CVEs using Chinese keywords directly.