Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 130 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-4267 Query Monitor <= 3.20.3 - Reflected Cross-Site Scripting via Request URI johnbillionQuery Monitor High 7.2 2026-03-31 11:29:49 Deep Dive
CVE-2026-25035 WordPress Contest Gallery plugin <= 28.1.2.2 - Account Takeover vulnerability Wasiliy Strecker / ContestGallery developerContest Gallery Critical 9.8 2026-03-25 16:14:39 Deep Dive
CVE-2026-24964 WordPress Contest Gallery plugin <= 28.1.2.1 - Server Side Request Forgery (SSRF) vulnerability Wasiliy Strecker / ContestGallery developerContest Gallery Medium 6.4 2026-03-25 16:14:33 Deep Dive
CVE-2026-3118 Rhdh: graphql injection leading to platform-wide denial of service (dos) in rh developer hub orchestrator plugin Red HatRed Hat Developer Hub 1.8 Medium 6.5 2026-02-25 11:25:55 Deep Dive
CVE-2026-24965 WordPress Contest Gallery plugin <= 28.1.1 - Broken Access Control vulnerability Wasiliy Strecker / ContestGallery developerContest Gallery--2026-02-03 14:08:35 Deep Dive
CVE-2025-67712 HTML injection issue in ArcGIS Web App Builder EsriArcGIS Web AppBuilder {Developer Edition) Medium 4.7 2025-12-19 20:05:42 Deep Dive
CVE-2025-14874 Nodemailer: nodemailer: denial of service via crafted email address header nodemailernodemailer High 7.5 2025-12-18 08:40:32 Deep Dive
CVE-2025-13888 Openshift-gitops-operator: openshift gitops: namespace admin cluster takeover via privileged jobs redhat-developergitops-operator Critical 9.1 2025-12-15 15:36:49 Deep Dive
CVE-2025-49752 Azure Bastion Elevation of Privilege Vulnerability MicrosoftAzure Bastion Developer Critical 10.0 2025-11-20 22:18:38 Deep Dive
CVE-2025-13033 Nodemailer: nodemailer: email to an unintended domain can occur due to interpretation conflict nodemailernodemailer High 7.5 2025-11-14 19:37:08 Deep Dive
CVE-2025-62950 WordPress Contest Gallery plugin <= 28.0.0 - Cross Site Request Forgery (CSRF) vulnerability Wasiliy Strecker / ContestGallery developerContest Gallery Medium 4.3 2025-11-06 15:56:05 Deep Dive
CVE-2017-20202 Web Developer for Chrome v0.4.9 Malicious Backdoor Supply Chain Compromise Web Developer for ChromeWeb Developer for Chrome--2025-10-08 22:04:12 Deep Dive
CVE-2025-10949 Changsha Developer Technology iView Editor Markdown cross site scripting Changsha Developer TechnologyiView Editor Low 2.4 2025-09-25 14:32:06 Deep Dive
CVE-2025-57903 WordPress WooCommerce Additional Fees On Checkout (Free) plugin <= 1.5.2 - Cross Site Scripting (XSS) vulnerability WPSuperiors DeveloperWooCommerce Additional Fees On Checkout (Free) Medium 5.9 2025-09-22 18:25:26 Deep Dive
CVE-2025-57924 WordPress Developer Plugin <= 1.2.6 - Cross Site Request Forgery (CSRF) Vulnerability AutomatticDeveloper Medium 4.3 2025-09-22 18:25:10 Deep Dive
CVE-2025-10050 Developer Loggers for Simple History <= 0.5 - Authenticated (Admin+) Local File Inclusion eskapismDeveloper Loggers for Simple History Medium 6.6 2025-09-17 01:49:17 Deep Dive
CVE-2025-26499 Wind River Studio Developer 安全漏洞 Wind River Studio DeveloperWind River Studio Developer Medium 6.0 2025-09-11 16:46:29 Deep Dive
CVE-2025-58818 WordPress Developer Tools Blocker Plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) Vulnerability SwiftNinjaProDeveloper Tools Blocker Medium 5.4 2025-09-05 13:45:17 Deep Dive
CVE-2025-5417 Rhdh: red hat developer hub user permissions Red HatRed Hat Developer Hub Medium 6.1 2025-08-19 04:28:08 Deep Dive
CVE-2025-8806 zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 treeData sql injection zhilink 智互联(深圳)科技有限公司ADP Application Developer Platform 应用开发者平台 Medium 6.3 2025-08-10 11:02:06 Deep Dive