| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-2298 | Salesforce Marketing Cloud Engagement 安全漏洞 | Salesforce | Marketing Cloud Engagement | - | - | 2026-03-23 19:54:33 | Deep Dive |
| CVE-2026-2418 | Login with Salesforce <= 1.0.2 - Unauthenticated Authentication Bypass | Unknown | Login with Salesforce | 中危 | - | 2026-03-05 06:00:03 | Deep Dive |
| CVE-2026-25650 | MCP Salesforce Connector has arbitrary attribute access which leads to disclosure of Salesforce auth token | smn2gnt | MCP-Salesforce | - | - | 2026-02-06 18:53:58 | Deep Dive |
| CVE-2026-22583 | Salesforce Marketing Cloud Engagement 安全漏洞 | Salesforce | Marketing Cloud Engagement | 中危 | - | 2026-01-24 00:20:55 | Deep Dive |
| CVE-2026-22582 | Salesforce Marketing Cloud Engagement 安全漏洞 | Salesforce | Marketing Cloud Engagement | 中危 | - | 2026-01-24 00:19:26 | Deep Dive |
| CVE-2026-22586 | Salesforce Marketing Cloud Engagement 安全漏洞 | Salesforce | Marketing Cloud Engagement | 中危 | - | 2026-01-24 00:17:08 | Deep Dive |
| CVE-2026-22585 | Salesforce Marketing Cloud Engagement 安全漏洞 | Salesforce | Marketing Cloud Engagement | 中危 | - | 2026-01-24 00:15:03 | Deep Dive |
| CVE-2026-22584 | Salesforce Uni2TS 安全漏洞 | Salesforce | Uni2TS | 中危 | - | 2026-01-09 22:10:03 | Deep Dive |
| CVE-2025-60180 | WordPress WP Gravity Forms Salesforce plugin <= 1.5.1 - PHP Object Injection vulnerability | CRM Perks | WP Gravity Forms Salesforce | - | - | 2025-12-18 07:22:09 | Deep Dive |
| CVE-2025-67468 | WordPress Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms plugin <= 1.4.6 - Broken Access Control vulnerability | CRM Perks | Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms | Medium | 4.3 | 2025-12-09 14:13:56 | Deep Dive |
| CVE-2025-10703 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:47:08 | Deep Dive |
| CVE-2025-10702 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:46:27 | Deep Dive |
| CVE-2025-64322 | Salesforce Agentforce Vibes Extension 安全漏洞 | Salesforce | Agentforce Vibes Extension | - | - | 2025-11-04 18:33:19 | Deep Dive |
| CVE-2025-64321 | Salesforce Agentforce Vibes Extension 安全漏洞 | Salesforce | Agentforce Vibes Extension | - | - | 2025-11-04 18:30:39 | Deep Dive |
| CVE-2025-64320 | Salesforce Agentforce Vibes Extension 安全漏洞 | Salesforce | Agentforce Vibes Extension | - | - | 2025-11-04 18:27:32 | Deep Dive |
| CVE-2025-64319 | Salesforce Mulesoft Anypoint Code Builder 安全漏洞 | Salesforce | Mulesoft Anypoint Code Builder | - | - | 2025-11-04 18:22:51 | Deep Dive |
| CVE-2025-64318 | Salesforce Mulesoft Anypoint Code Builder 安全漏洞 | Salesforce | Mulesoft Anypoint Code Builder | - | - | 2025-11-04 18:19:33 | Deep Dive |
| CVE-2025-10875 | Salesforce Mulesoft Anypoint Code Builder 安全漏洞 | Salesforce | Mulesoft Anypoint Code Builder | - | - | 2025-11-04 18:14:29 | Deep Dive |
| CVE-2025-9844 | Salesforce CLI 安全漏洞 | Salesforce | Salesforce CLI | - | - | 2025-09-23 13:11:32 | Deep Dive |
| CVE-2025-58809 | WordPress To Lead For Salesforce Plugin <= 2.7.3.9 - Cross Site Request Forgery (CSRF) Vulnerability | Nick Ciske | To Lead For Salesforce | High | 7.1 | 2025-09-05 13:45:12 | Deep Dive |