| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-31234 | WordPress REHub Framework plugin < 19.6.2 - SQL Injection vulnerability | Sizam | REHub Framework | High | 8.5 | 2024-04-07 18:02:13 | Deep Dive |
| CVE-2024-31215 | Mobile Security Framework (MobSF) vulnerable to Server-Side Request Forgery (SSRF) in firebase database check | MobSF | Mobile-Security-Framework-MobSF | Medium | 6.3 | 2024-04-04 16:10:19 | Deep Dive |
| CVE-2024-30500 | WordPress CubeWP plugin <= 1.1.12 - Arbitrary File Upload vulnerability | CubeWP | CubeWP – All-in-One Dynamic Content Framework | Critical | 9.9 | 2024-03-29 13:35:06 | Deep Dive |
| CVE-2024-29059 | .NET Framework Information Disclosure Vulnerability | Microsoft | Microsoft .NET Framework 4.8 | High | 7.5 | 2024-03-22 23:09:06 | Deep Dive |
| CVE-2024-29190 | MobSF SSRF Vulnerability on assetlinks_check(act_name, well_knowns) | MobSF | Mobile-Security-Framework-MobSF | High | 7.5 | 2024-03-22 22:12:23 | Deep Dive |
| CVE-2024-22259 | CVE-2024-22259: Spring Framework URL Parsing with Host Validation (2nd report) | Spring | Spring Framework | High | 8.1 | 2024-03-16 04:40:09 | Deep Dive |
| CVE-2023-39254 | Dell Update Package(DUP)Framework 代码问题漏洞 | Dell | DUP Framework | Medium | 6.7 | 2024-03-01 12:43:31 | Deep Dive |
| CVE-2024-22243 | CVE-2024-22243: Spring Framework URL Parsing with Host Validation | Spring | Spring Framework | High | 8.1 | 2024-02-23 05:03:54 | Deep Dive |
| CVE-2024-20953 | Oracle Supply Chain Products Suite 安全漏洞 | Oracle Corporation | Agile PLM Framework | High | 8.8 | 2024-02-17 01:50:17 | Deep Dive |
| CVE-2024-1309 | Resource Consumption Identified in NTP before 4.2.4p8 and 4.2.5 | Honeywell | Niagara Framework | Medium | 6.5 | 2024-02-13 13:41:51 | Deep Dive |
| CVE-2024-24880 | WordPress Apollo13 Framework Extensions Plugin <= 1.9.2 is vulnerable to Cross Site Scripting (XSS) | Apollo13Themes | Apollo13 Framework Extensions | Medium | 6.5 | 2024-02-08 11:58:21 | Deep Dive |
| CVE-2023-32454 | Dell Update Package(DUP)Framework 后置链接漏洞 | Dell | DUP Framework | Medium | 6.3 | 2024-02-06 08:00:46 | Deep Dive |
| CVE-2023-6526 | Meta Box – WordPress Custom Fields Framework <= 5.9.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | metabox | Meta Box | Medium | 6.4 | 2024-02-05 21:21:38 | Deep Dive |
| CVE-2023-48714 | Record titles for restricted records can be viewed if exposed by GridFieldAddExistingAutocompleter | silverstripe | silverstripe-framework | Medium | 4.3 | 2024-01-23 13:49:27 | Deep Dive |
| CVE-2024-22233 | CVE-2024-22233: Spring Framework server Web DoS Vulnerability | Spring | Spring Framework | High | 7.5 | 2024-01-22 12:16:15 | Deep Dive |
| CVE-2024-21667 | Pimcore Customer Data Framework Improper Access Control allows unprivileged user to access GDPR extracts | pimcore | customer-data-framework | Medium | 6.5 | 2024-01-11 01:05:36 | Deep Dive |
| CVE-2024-21666 | Pimcore Customer Data Framework Improper Access Control allows unprivileged user to access customers duplicates list | pimcore | customer-data-framework | Medium | 6.5 | 2024-01-11 00:45:45 | Deep Dive |
| CVE-2024-21665 | Pimcore Ecommerce Framework Bundle Improper Access Control allows unprivileged user to access back-office orders list | pimcore | ecommerce-framework-bundle | Medium | 4.3 | 2024-01-11 00:39:49 | Deep Dive |
| CVE-2024-21312 | .NET Framework Denial of Service Vulnerability | Microsoft | Microsoft .NET Framework 3.5 AND 4.8.1 | High | 7.5 | 2024-01-09 17:57:11 | Deep Dive |
| CVE-2024-0057 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | Microsoft | .NET 8.0 | Critical | 9.1 | 2024-01-09 17:57:00 | Deep Dive |