| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-12623 | DICOM Support <= 0.10.6 - Authenticated (Contributor+) Stored Cross-Site Scripting | ivmartel | DICOM Support | Medium | 6.4 | 2025-03-25 07:04:56 | Deep Dive |
| CVE-2024-13768 | CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Font Assignment Deletion | ashikcse | CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts | Medium | 4.3 | 2025-03-22 06:41:13 | Deep Dive |
| CVE-2025-0807 | CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Settings Update | ashikcse | CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts | Medium | 4.3 | 2025-03-22 06:41:10 | Deep Dive |
| CVE-2025-2487 | 389-ds-base: null pointer dereference leads to denial of service | - | - | Medium | 4.9 | 2025-03-18 16:25:44 | Deep Dive |
| CVE-2024-8176 | Libexpat: expat: improper restriction of xml entity expansion depth in libexpat | - | - | High | 7.5 | 2025-03-14 08:19:49 | Deep Dive |
| CVE-2025-2166 | CM FAQ – Simplify support with an intuitive FAQ management tool <= 1.2.5 - Reflected Cross-Site Scripting | creativemindssolutions | CM FAQ – Simplify support with an intuitive FAQ management tool | Medium | 6.1 | 2025-03-14 04:22:33 | Deep Dive |
| CVE-2024-13552 | SupportCandy – Helpdesk & Customer Support Ticket System <= 3.3.0 - Insecure Direct Object Reference | psmplugins | SupportCandy – Helpdesk & Customer Support Ticket System | Medium | 4.3 | 2025-03-07 09:21:14 | Deep Dive |
| CVE-2025-26589 | WordPress IE CSS3 Support Plugin <= 2.0.1 - Reflected Cross Site Scripting (XSS) vulnerability | Cristopher Dino | IE CSS3 Support | High | 7.1 | 2025-03-03 13:30:29 | Deep Dive |
| CVE-2024-13568 | Fluent Support – Helpdesk & Customer Support Ticket System <= 1.8.5 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory | techjewel | Fluent Support – Helpdesk & Customer Support Ticket System | High | 7.5 | 2025-03-01 04:21:47 | Deep Dive |
| CVE-2025-26601 | Xorg: xwayland: use-after-free in syncinittrigger() | - | - | High | 7.8 | 2025-02-25 15:55:37 | Deep Dive |
| CVE-2025-26600 | Xorg: xwayland: use-after-free in playreleasedevents() | - | - | High | 7.8 | 2025-02-25 15:55:20 | Deep Dive |
| CVE-2025-26599 | Xorg: xwayland: use of uninitialized pointer in compredirectwindow() | - | - | High | 7.8 | 2025-02-25 15:55:03 | Deep Dive |
| CVE-2025-26598 | Xorg: xwayland: out-of-bounds write in createpointerbarrierclient() | - | - | High | 7.8 | 2025-02-25 15:54:57 | Deep Dive |
| CVE-2025-26597 | Xorg: xwayland: buffer overflow in xkbchangetypesofkey() | - | - | High | 7.8 | 2025-02-25 15:54:48 | Deep Dive |
| CVE-2025-26596 | Xorg: xwayland: heap overflow in xkbwritekeysyms() | - | - | High | 7.8 | 2025-02-25 15:54:24 | Deep Dive |
| CVE-2025-26595 | Xorg: xwayland: buffer overflow in xkbvmodmasktext() | - | - | High | 7.8 | 2025-02-25 15:54:07 | Deep Dive |
| CVE-2025-26594 | X.org: xwayland: use-after-free of the root cursor | - | - | High | 7.8 | 2025-02-25 15:53:51 | Deep Dive |
| CVE-2025-26985 | WordPress Majestic Support plugin <= 1.0.6 - Local File Inclusion vulnerability | Majestic Support | Majestic Support | High | 8.1 | 2025-02-25 14:16:34 | Deep Dive |
| CVE-2024-10222 | SVG Support <= 2.5.10 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | benbodhi | SVG Support | Medium | 6.4 | 2025-02-21 13:41:29 | Deep Dive |
| CVE-2025-0624 | Grub2: net: out-of-bounds write in grub_net_search_config_file() | - | - | High | 7.6 | 2025-02-19 18:23:21 | Deep Dive |