| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-53249 | WordPress Build App Online Plugin <= 1.0.23 - Cross Site Request Forgery (CSRF) Vulnerability | hakeemnala | Build App Online | Medium | 6.5 | 2025-08-14 18:22:00 | Deep Dive |
| CVE-2025-53341 | WordPress Stratus Theme <= 4.2.5 - Broken Access Control Vulnerability | Themovation | App, SaaS & Software Startup Tech Theme - Stratus | Medium | 4.3 | 2025-08-14 18:21:57 | Deep Dive |
| CVE-2025-27388 | Arbitrary URL Loading in WebView Leading to Token Leakage Risk | OPPO | OPPO HEALTH APP | - | - | 2025-08-14 07:15:11 | Deep Dive |
| CVE-2025-2183 | GlobalProtect App: Improper Certificate Validation Leads to Privilege Escalation | Palo Alto Networks | GlobalProtect App | - | - | 2025-08-13 17:05:09 | Deep Dive |
| CVE-2025-53769 | Windows Security App Spoofing Vulnerability | Microsoft | Windows Security App | Medium | 5.5 | 2025-08-12 17:10:38 | Deep Dive |
| CVE-2025-8745 | Weee RICEPO App com.ricepo.app AndroidManifest.xml improper export of android application components | Weee | RICEPO App | Medium | 5.3 | 2025-08-09 05:02:05 | Deep Dive |
| CVE-2025-8393 | Dreame Technology iOS and Android Mobile Applications Improper Certificate Validation | Dreame Technology | Dreamehome iOS app | High | 7.3 | 2025-08-08 16:23:19 | Deep Dive |
| CVE-2025-8707 | Huuge Box App com.huuge.game.zjbox AndroidManifest.xml improper export of android application components | Huuge | Box App | Medium | 5.3 | 2025-08-08 02:02:06 | Deep Dive |
| CVE-2025-8524 | Boquan DotWallet App com.boquanhash.dotwallet AndroidManifest.xml improper export of android application components | Boquan | DotWallet App | Medium | 5.3 | 2025-08-04 20:02:06 | Deep Dive |
| CVE-2025-8523 | RiderLike Fruit Crush-Brain App com.fruitcrush.fun AndroidManifest.xml improper export of android application components | RiderLike | Fruit Crush-Brain App | Medium | 5.3 | 2025-08-04 19:32:06 | Deep Dive |
| CVE-2025-8513 | Caixin News App com.caixin.news AndroidManifest.xml improper export of android application components | Caixin | News App | Medium | 5.3 | 2025-08-03 14:32:05 | Deep Dive |
| CVE-2025-8512 | TVB Big Big Shop App hk.com.tvb.bigbigshop AndroidManifest.xml improper export of android application components | TVB | Big Big Shop App | Medium | 5.3 | 2025-08-03 14:02:06 | Deep Dive |
| CVE-2025-2179 | GlobalProtect App: Non Admin User Can Disable the GlobalProtect App | Palo Alto Networks | GlobalProtect App | - | - | 2025-07-29 17:15:08 | Deep Dive |
| CVE-2025-53649 | SwitchBot 日志信息泄露漏洞 | SwitchBot | SwitchBot App for iOS/Android | - | - | 2025-07-29 04:41:36 | Deep Dive |
| CVE-2025-8275 | bsc Peru Cocktails App bsc.devy.peru_cocktails AndroidManifest.xml improper export of android application components | bsc | Peru Cocktails App | Medium | 5.3 | 2025-07-28 12:02:06 | Deep Dive |
| CVE-2025-8258 | Cool Mo Maigcal Number App com.sdmagic.number AndroidManifest.xml improper export of android application components | Cool Mo | Maigcal Number App | Medium | 5.3 | 2025-07-28 05:02:10 | Deep Dive |
| CVE-2025-8257 | Lobby Universe Lobby App com.maverick.lobby AndroidManifest.xml improper export of android application components | Lobby Universe | Lobby App | Medium | 5.3 | 2025-07-28 04:32:05 | Deep Dive |
| CVE-2025-8210 | Yeelink Yeelight App com.yeelight.cherry AndroidManifest.xml improper export of android application components | Yeelink | Yeelight App | Medium | 5.3 | 2025-07-26 20:32:05 | Deep Dive |
| CVE-2025-8207 | Canara ai1 Mobile Banking App com.canarabank.mobility AndroidManifest.xml improper export of android application components | Canara | ai1 Mobile Banking App | Medium | 5.3 | 2025-07-26 20:02:06 | Deep Dive |
| CVE-2025-52580 | Gift Pad region PAY 日志信息泄露漏洞 | Gift Pad Co.,Ltd. | "region PAY" App for Android | 低危 | - | 2025-07-22 04:49:33 | Deep Dive |