| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-34488 | i-PRO IP Setting Software 代码问题漏洞 | i-PRO Co., Ltd. | IP Setting Software | - | - | 2026-04-23 06:17:14 | Deep Dive |
| CVE-2026-1845 | Real Estate Pro <= 1.0.9 - Authenticated (Admin+) Stored Cross-Site Scripting via Settings | bhubbard | Real Estate Pro | Medium | 5.5 | 2026-04-22 07:45:31 | Deep Dive |
| CVE-2025-41029 | SQL injection in Zeon Academy Pro by Zeon Global Tech | Zeon Global Tech | Zeon Academy Pro | - | - | 2026-04-21 14:59:40 | Deep Dive |
| CVE-2025-15625 | Unauthenticated execution of arbitrary SQL queries in Sparx Pro Cloud Server | Sparx Systems Pty Ltd. | Sparx Pro Cloud Server | - | - | 2026-04-17 08:39:00 | Deep Dive |
| CVE-2025-15624 | Plaintext Storage of a Password in Sparx Pro Cloud Server. | Sparx Systems Pty Ltd. | Sparx Pro Cloud Server | - | - | 2026-04-17 08:38:37 | Deep Dive |
| CVE-2025-15623 | Sparx Pro Cloud Server reveals sensitive information to an unauthenticated user | Sparx Systems Pty Ltd. | Sparx Pro Cloud Server | - | - | 2026-04-17 08:37:28 | Deep Dive |
| CVE-2026-40002 | ZTE Red Magic 11 Pro (NX809J) contains a vulnerability that allows non-privileged applications to trigger sensitive operations. | ZTE | Red Magic 11 Pro (NX809J) | Medium | 5.0 | 2026-04-17 07:40:58 | Deep Dive |
| CVE-2025-54502 | AMD EPYC Processor 安全漏洞 | AMD | AMD EPYC™ 9004 Series Processors | - | - | 2026-04-16 18:46:13 | Deep Dive |
| CVE-2025-36579 | Dell Client Platform BIOS 安全漏洞 | Dell | Dell Pro 14 Essential PV14250 | Medium | 5.1 | 2026-04-16 16:05:33 | Deep Dive |
| CVE-2026-5785 | SQL Injection | Zohocorp | ManageEngine PAM360 | High | 8.1 | 2026-04-16 13:46:28 | Deep Dive |
| CVE-2026-1782 | MetForm Pro <= 3.9.7 - Unauthenticated Payment Amount Manipulation via 'mf-calculation' | Wpmet | MetForm Pro | Medium | 5.3 | 2026-04-15 08:28:16 | Deep Dive |
| CVE-2026-33892 | Siemens Industrial Edge Management 安全漏洞 | Siemens | Industrial Edge Management Pro V1 | High | 7.1 | 2026-04-14 08:40:47 | Deep Dive |
| CVE-2026-34424 | Smart Slider 3 Pro 3.5.1.35 Supply Chain Attack Remote Access Toolkit | Nextendweb | Smart Slider 3 Pro for WordPress | Critical | 9.8 | 2026-04-09 22:59:38 | Deep Dive |
| CVE-2026-39704 | WordPress Precious Metals Automated Product Pricing – Pro plugin <= 4.0.5 - Broken Access Control vulnerability | nfusionsolutions | Precious Metals Automated Product Pricing – Pro | - | - | 2026-04-08 08:30:47 | Deep Dive |
| CVE-2026-39506 | WordPress AI Engine (Pro) plugin < 3.4.2 - Broken Access Control vulnerability | Jordy Meow | AI Engine (Pro) | - | - | 2026-04-08 08:30:14 | Deep Dive |
| CVE-2026-3499 | Product Feed PRO for WooCommerce by AdTribes – Product Feeds for WooCommerce 13.4.6 - 13.5.2.1 - Cross-Site Request Forgery to Multiple Administrative Actions | jkohlbach | Product Feed PRO for WooCommerce by AdTribes – Product Feeds for WooCommerce | High | 8.8 | 2026-04-08 01:24:44 | Deep Dive |
| CVE-2019-25680 | Advance Gift Shop Pro Script 2.0.3 SQL Injection via search | Phpscriptsmall | Advance Gift Shop Pro Script | High | 8.2 | 2026-04-05 20:45:31 | Deep Dive |
| CVE-2026-5527 | Tenda 4G03 Pro ECDSA P-256 Private Key server.key hard-coded key | Tenda | 4G03 Pro | Medium | 5.3 | 2026-04-04 23:15:12 | Deep Dive |
| CVE-2026-5526 | Tenda 4G03 Pro httpd access control | Tenda | 4G03 Pro | High | 7.3 | 2026-04-04 22:15:14 | Deep Dive |
| CVE-2026-5458 | Noelse Individuals & Pro App com.afone.noelse BuildConfig.java hard-coded key | Noelse | Individuals & Pro App | Low | 3.3 | 2026-04-03 07:00:16 | Deep Dive |