| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-47109 | IBM Sterling File Gateway information disclosure | IBM | Sterling File Gateway | Medium | 5.3 | 2025-03-10 16:01:43 | Deep Dive |
| CVE-2025-25294 | Envoy Gateway Log Injection Vulnerability | envoyproxy | gateway | Medium | 5.3 | 2025-03-06 18:46:24 | Deep Dive |
| CVE-2025-26535 | WordPress Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop plugin <= 1.7.6 - SQL Injection vulnerability | CodeSolz | Bitcoin / AltCoin Payment Gateway for WooCommerce | Critical | 9.3 | 2025-03-03 13:30:28 | Deep Dive |
| CVE-2024-51539 | Dell Secure Connect Gateway SQL注入漏洞 | Dell | Secure Connect Gateway - Application | Low | 2.3 | 2025-02-25 13:45:04 | Deep Dive |
| CVE-2025-1536 | Raisecom Multi-Service Intelligent Gateway Request Parameter vpn_template_style.php os command injection | Raisecom | Multi-Service Intelligent Gateway | High | 7.3 | 2025-02-21 14:31:05 | Deep Dive |
| CVE-2025-1448 | Synway SMG Gateway Management Software 9-12ping.php command injection | Synway | SMG Gateway Management Software | High | 7.3 | 2025-02-19 01:31:04 | Deep Dive |
| CVE-2025-0681 | New Rock Technologies Cloud Connected Devices Improper Neutralization of Wildcards or Matching Symbols | New Rock Technologies | OM500 IP-PBX | Medium | 6.2 | 2025-01-30 18:53:10 | Deep Dive |
| CVE-2025-0680 | New Rock Technologies Cloud Connected Devices has a Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. | New Rock Technologies | OM500 IP-PBX | Critical | 9.8 | 2025-01-30 18:50:11 | Deep Dive |
| CVE-2023-52292 | IBM Sterling File Gateway cross-site scripting | IBM | Sterling File Gateway | Medium | 6.4 | 2025-01-27 16:06:51 | Deep Dive |
| CVE-2023-47159 | IBM Sterling File Gateway information disclosure | IBM | Sterling File Gateway | Medium | 4.3 | 2025-01-27 16:04:51 | Deep Dive |
| CVE-2024-22316 | IBM Sterling File Gateway improper access control | IBM | Sterling File Gateway | Medium | 4.3 | 2025-01-27 16:03:53 | Deep Dive |
| CVE-2025-24030 | Envoy Admin Interface Exposed through prometheus metrics endpoint | envoyproxy | gateway | High | 7.1 | 2025-01-23 03:20:28 | Deep Dive |
| CVE-2025-23966 | WordPress a Gateway for Pasargad Bank on WooCommerce Plugin <= 2.5.2 - Cross Site Scripting (XSS) vulnerability | Ala Falaki | a Gateway for Pasargad Bank on WooCommerce | High | 7.1 | 2025-01-22 14:29:27 | Deep Dive |
| CVE-2024-47113 | IBM ICP - Voice Gateway XML injection | IBM | Voice Gateway | High | 8.1 | 2025-01-18 15:29:41 | Deep Dive |
| CVE-2025-21403 | On-Premises Data Gateway Information Disclosure Vulnerability | Microsoft | On-Premises Data Gateway | Medium | 6.4 | 2025-01-14 18:04:13 | Deep Dive |
| CVE-2024-11810 | PayGreen Payment Gateway <= 1.0.26 - Reflected Cross-Site Scripting | paygreen | PayGreen Payment Gateway | Medium | 6.1 | 2025-01-07 04:22:22 | Deep Dive |
| CVE-2024-55996 | WordPress Payment gateway per Product for WooCommerce plugin <= 3.5.6 - Broken Access Control vulnerability | dreamfox | Dreamfox Media Payment gateway per Product for Woocommerce | Medium | 6.1 | 2024-12-16 14:31:16 | Deep Dive |
| CVE-2024-53243 | Information Disclosure in Mobile Alert Responses in Splunk Secure Gateway | Splunk | Splunk Enterprise | Medium | 4.3 | 2024-12-10 18:00:49 | Deep Dive |
| CVE-2024-53247 | Remote Code Execution through Deserialization of Untrusted Data in Splunk Secure Gateway app | Splunk | Splunk Enterprise | High | 8.8 | 2024-12-10 18:00:24 | Deep Dive |
| CVE-2024-11329 | Comfino Payment Gateway <= 4.1.1 - Reflected Cross-Site Scripting | comfino | Comfino Payment Gateway | Medium | 6.1 | 2024-12-07 01:45:04 | Deep Dive |