| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-10208 | Cross Site Scripting vulnerability in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:43:41 | Deep Dive |
| CVE-2024-10207 | Server-Side Request Forgery (authenticated) in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:42:41 | Deep Dive |
| CVE-2024-10206 | Server-Side Request Forgery (unauthenticated) in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:33:04 | Deep Dive |
| CVE-2024-8315 | Improper Handling of Insufficient Permissions or Privileges in B&R APROL | B&R Industrial Automation | B&R APROL | - | - | 2025-03-25 04:31:28 | Deep Dive |
| CVE-2024-8314 | Improper session handling in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:30:18 | Deep Dive |
| CVE-2024-8313 | Default or Guessable SNMP community names in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:29:15 | Deep Dive |
| CVE-2025-2186 | Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit <= 3.5.1 - Unauthenticated SQL Injection via 'automationId' | amans2k | FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce | High | 7.5 | 2025-03-22 12:42:12 | Deep Dive |
| CVE-2025-1960 | Schneider Electric WebHMI 安全漏洞 | Schneider Electric | WebHMI – Deployed with EcoStruxure Power Automation System | Critical | 9.8 | 2025-03-12 15:33:59 | Deep Dive |
| CVE-2025-0813 | Schneider Electric EcoStruxure Power Automation System User Interface 授权问题漏洞 | Schneider Electric | EcoStruxure Power Automation System User Interface (EPAS-UI) - Secured Versions | Medium | 6.8 | 2025-03-12 15:30:03 | Deep Dive |
| CVE-2024-13838 | Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin <= 6.2 - Authenticated (Admin+) Server-Side Request Forgery via Webhook | uncannyowl | Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin | Medium | 5.5 | 2025-03-12 07:00:22 | Deep Dive |
| CVE-2025-27926 | Nintex Automation 安全漏洞 | Nintex | Automation | Medium | 4.3 | 2025-03-10 00:00:00 | Deep Dive |
| CVE-2025-27925 | Nintex Automation 代码问题漏洞 | Nintex | Automation | High | 8.5 | 2025-03-10 00:00:00 | Deep Dive |
| CVE-2025-27924 | Nintex Automation 跨站脚本漏洞 | Nintex | Automation | Medium | 5.4 | 2025-03-10 00:00:00 | Deep Dive |
| CVE-2025-23368 | Org.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cli | - | - | High | 8.1 | 2025-03-04 15:14:48 | Deep Dive |
| CVE-2025-1801 | Aap-gateway: aap-gateway privilege escalation | - | - | High | 8.1 | 2025-03-03 15:03:15 | Deep Dive |
| CVE-2024-54179 | IBM Business Automation Workflow cross-site scripting | IBM | Business Automation Workflow | Medium | 5.4 | 2025-03-03 13:56:50 | Deep Dive |
| CVE-2025-22631 | WordPress Marketing Automation Plugin <= 1.2.6.8 - Reflected Cross Site Scripting (XSS) vulnerability | vbout | Marketing Automation | High | 7.1 | 2025-02-23 22:55:06 | Deep Dive |
| CVE-2024-12547 | Tungsten Automation Power PDF JPF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability | Tungsten Automation | Power PDF | 高危 | - | 2025-02-11 19:25:24 | Deep Dive |
| CVE-2024-12548 | Tungsten Automation Power PDF JP2 File Parsing Use-After-Free Information Disclosure Vulnerability | Tungsten Automation | Power PDF | 低危 | - | 2025-02-11 19:24:56 | Deep Dive |
| CVE-2024-12549 | Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability | Tungsten Automation | Power PDF | 高危 | - | 2025-02-11 19:24:43 | Deep Dive |