| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-33104 | IBM WebSphere Application Server cross | IBM | WebSphere Application Server | Medium | 4.4 | 2025-05-14 19:01:10 | Deep Dive |
| CVE-2025-31329 | Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server ABAP and ABAP Platform | Medium | 6.2 | 2025-05-13 00:16:51 | Deep Dive |
| CVE-2025-4531 | Seeyon Zhiyuan OA Web Application System Beetl Template EhrSalaryPayrollServiceImpl.class postData code injection | Seeyon | Zhiyuan OA Web Application System | Medium | 6.3 | 2025-05-11 05:31:07 | Deep Dive |
| CVE-2025-4529 | Seeyon Zhiyuan OA Web Application System ZIP File M3CoreController.class download path traversal | Seeyon | Zhiyuan OA Web Application System | Medium | 4.3 | 2025-05-11 04:00:08 | Deep Dive |
| CVE-2025-2898 | IBM Maximo Application Suite privilege escalation | IBM | Maximo Application Suite | High | 7.5 | 2025-05-06 14:41:10 | Deep Dive |
| CVE-2025-4000 | Seeyon Zhiyuan OA Web Application System ssoproxy.jsp cross site scripting | Seeyon | Zhiyuan OA Web Application System | Low | 3.5 | 2025-04-28 04:00:07 | Deep Dive |
| CVE-2025-3999 | Seeyon Zhiyuan OA Web Application System URL Parameter date.jsp cross site scripting | Seeyon | Zhiyuan OA Web Application System | Low | 3.5 | 2025-04-28 03:31:06 | Deep Dive |
| CVE-2025-27907 | IBM WebSphere Application Server server-side request forgery | IBM | WebSphere Application Server | Medium | 4.1 | 2025-04-22 16:20:22 | Deep Dive |
| CVE-2025-30735 | Oracle PeopleSoft 安全漏洞 | Oracle Corporation | PeopleSoft Enterprise CC Common Application Objects | High | 8.1 | 2025-04-15 20:31:20 | Deep Dive |
| CVE-2025-30732 | Oracle E-Business Suite 安全漏洞 | Oracle Corporation | Oracle Application Object Library | Medium | 6.1 | 2025-04-15 20:31:19 | Deep Dive |
| CVE-2025-30730 | Oracle Application Object Library 安全漏洞 | Oracle Corporation | Oracle Application Object Library | High | 7.5 | 2025-04-15 20:31:18 | Deep Dive |
| CVE-2025-30726 | Oracle Application Object Library 安全漏洞 | Oracle Corporation | Oracle Application Object Library | Medium | 5.3 | 2025-04-15 20:31:17 | Deep Dive |
| CVE-2025-32367 | Oz Forensics Oz Liveness 安全漏洞 | Oz Forensics | face recognition application | High | 8.6 | 2025-04-11 00:00:00 | Deep Dive |
| CVE-2023-43037 | IBM Maximo Application Suite improper access control | IBM | Maximo Application Suite | Medium | 6.5 | 2025-04-10 13:19:47 | Deep Dive |
| CVE-2025-30015 | Memory Corruption vulnerability in SAP NetWeaver and ABAP Platform (Application Server ABAP) | SAP_SE | SAP NetWeaver and ABAP Platform (Application Server ABAP) | Medium | 4.1 | 2025-04-08 07:14:37 | Deep Dive |
| CVE-2025-27437 | Missing Authorization check in SAP NetWeaver Application Server ABAP (Virus Scan Interface) | SAP_SE | SAP NetWeaver Application Server ABAP (Virus Scan Interface) | Medium | 4.3 | 2025-04-08 07:13:58 | Deep Dive |
| CVE-2025-26653 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) | SAP_SE | SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) | Medium | 4.7 | 2025-04-08 07:10:34 | Deep Dive |
| CVE-2025-23186 | Mixed Dynamic RFC Destination vulnerability through Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP | SAP_SE | SAP NetWeaver Application Server ABAP | High | 8.5 | 2025-04-08 07:10:22 | Deep Dive |
| CVE-2025-2251 | Org.jboss.eap:wildfly-ejb3: improper deserialization in jboss marshalling allows remote code execution | - | - | Medium | 6.2 | 2025-04-07 14:06:47 | Deep Dive |
| CVE-2025-1500 | IBM Maximo Application Suite file upload | IBM | Maximo Application Suite | Medium | 5.5 | 2025-04-05 00:28:26 | Deep Dive |