| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-14738 | Configuration Disclosure Vulnerability in TP-Link WA850RE | TP-Link Systems Inc. | WA850RE | - | - | 2025-12-18 18:01:19 | Deep Dive |
| CVE-2025-14737 | Command Injection Vulnerability in TP-Link WA850RE | TP-Link Systems Inc. | WA850RE | - | - | 2025-12-18 18:00:30 | Deep Dive |
| CVE-2025-14884 | D-Link DIR-605 Firmware Update Service command injection | D-Link | DIR-605 | High | 7.2 | 2025-12-18 17:02:12 | Deep Dive |
| CVE-2025-14553 | Password Hash Leak Could Lead to Unauthorized Access on Tapo App via Local Network | TP-Link Systems Inc. | TP-Link Tapo App | - | - | 2025-12-16 18:38:09 | Deep Dive |
| CVE-2023-53896 | D-Link DAP-1325 Hardware A1 Unauthenticated Configuration Download | D-Link | DAP-1325 | High | 7.5 | 2025-12-16 17:06:20 | Deep Dive |
| CVE-2025-67962 | WordPress Broken Link Checker plugin <= 1.2.6 - SQL Injection vulnerability | AIOSEO Plugin Team | Broken Link Checker | High | 7.6 | 2025-12-16 08:12:58 | Deep Dive |
| CVE-2025-14659 | D-Link DIR-860LB1/DIR-868LB1 DHCP command injection | D-Link | DIR-860LB1 | High | 8.8 | 2025-12-14 11:32:07 | Deep Dive |
| CVE-2025-14528 | D-Link DIR-803 Configuration getcfg.php information disclosure | D-Link | DIR-803 | Medium | 5.3 | 2025-12-11 17:02:15 | Deep Dive |
| CVE-2025-13607 | D-Link CCTV camera model DCS-F5614-L1 Missing Authentication for Critical Function | D-Link | DCS-F5614-L1 | Critical | 9.4 | 2025-12-10 17:15:54 | Deep Dive |
| CVE-2025-13184 | Unauthenticated Telnet enablement via cstecgi.cgi (auth bypass) leading to unauthenticated root login with a blank password | Toto Link | X5000R's (AX1800 router) | - | - | 2025-12-10 12:34:55 | Deep Dive |
| CVE-2025-67576 | WordPress Simple Link Directory plugin <= 8.8.3 - Broken Access Control vulnerability | QuantumCloud | Simple Link Directory | - | - | 2025-12-09 14:14:14 | Deep Dive |
| CVE-2025-67465 | WordPress Simple Link Directory plugin <= 8.8.3 - Cross Site Request Forgery (CSRF) vulnerability | QuantumCloud | Simple Link Directory | Medium | 4.3 | 2025-12-09 14:13:55 | Deep Dive |
| CVE-2025-40820 | Siemens多款产品 安全漏洞 | Siemens | SIDOOR ATD430W | High | 7.5 | 2025-12-09 10:44:31 | Deep Dive |
| CVE-2025-14284 | Tiptap Editor 安全漏洞 | - | @tiptap/extension-link | Medium | 6.1 | 2025-12-09 05:00:03 | Deep Dive |
| CVE-2025-14225 | D-Link DCS-930L alphapd setSystemAdmin command injection | D-Link | DCS-930L | Medium | 6.3 | 2025-12-08 09:02:08 | Deep Dive |
| CVE-2025-14208 | D-Link DIR-823X set_wan_settings sub_415028 command injection | D-Link | DIR-823X | Medium | 6.3 | 2025-12-08 01:02:08 | Deep Dive |
| CVE-2025-11263 | Link Whisper Free <= 0.8.8 - Reflected Cross-Site Scripting | linkwhspr | Link Whisper Free | Medium | 6.1 | 2025-12-06 03:27:05 | Deep Dive |
| CVE-2025-12666 | Google Drive upload and download link <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | oscaruh | Google Drive upload and download link | Medium | 6.4 | 2025-11-27 02:26:13 | Deep Dive |
| CVE-2025-12629 | Broken Link Manager <= 0.6.5 - Reflected XSS | Unknown | Broken Link Manager | - | - | 2025-11-24 06:00:07 | Deep Dive |
| CVE-2025-13562 | D-Link DIR-852 gena.cgi command injection | D-Link | DIR-852 | High | 7.3 | 2025-11-23 18:02:06 | Deep Dive |