| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-45744 | Peplink Smart Reader 访问控制错误漏洞 | Peplink | Smart Reader | High | 8.3 | 2024-04-17 12:55:48 | Deep Dive |
| CVE-2023-40146 | Peplink Smart Reader 命令注入漏洞 | Peplink | Smart Reader | Medium | 6.8 | 2024-04-17 12:55:47 | Deep Dive |
| CVE-2024-1307 | Smart Forms < 2.6.94 - Subscriber+ Edit Entries via Broken Access Control | Unknown | Smart Forms | - | - | 2024-04-15 05:00:04 | Deep Dive |
| CVE-2024-1306 | Smart Forms < 2.6.94 - Edit Entries via CSRF | Unknown | Smart Forms | - | - | 2024-04-15 05:00:03 | Deep Dive |
| CVE-2024-3735 | Smart Office Main.aspx weak password | - | Smart Office | Low | 3.7 | 2024-04-13 13:00:06 | Deep Dive |
| CVE-2023-6494 | WPC Smart Quick View for WooCommerce <= 4.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting | wpclever | WPC Smart Quick View for WooCommerce | Medium | 4.4 | 2024-04-13 08:41:16 | Deep Dive |
| CVE-2024-3027 | Smart Slider 3 <= 3.5.1.22 - Missing Authorization to Limited File Upload | nextendweb | Smart Slider 3 | Medium | 6.4 | 2024-04-13 01:57:50 | Deep Dive |
| CVE-2024-31238 | WordPress Smart Online Order for Clover plugin <= 1.5.5 - Cross Site Request Forgery (CSRF) vulnerability | Zaytech | Smart Online Order for Clover | Medium | 5.4 | 2024-04-12 13:00:27 | Deep Dive |
| CVE-2024-3521 | Byzoro Smart S80 Management Platform userattestation.php unrestricted upload | Byzoro | Smart S80 Management Platform | Medium | 4.7 | 2024-04-09 22:31:05 | Deep Dive |
| CVE-2023-25494 | Lenovo ThinkStation 安全漏洞 | Lenovo | Desktop BIOS, Smart Edge BIOS, ThinkStation BIOS | Medium | 6.7 | 2024-04-05 20:46:09 | Deep Dive |
| CVE-2024-3346 | Byzoro Smart S80 webmailattach.php os command injection | Byzoro | Smart S80 | Medium | 6.3 | 2024-04-05 15:31:04 | Deep Dive |
| CVE-2024-1995 | Smart Custom Fields <= 4.2.2 - Missing Authorization to Authenticated (Subscriber+) Post Content Disclosure | inc2734 | Smart Custom Fields | Medium | 4.3 | 2024-03-20 01:58:05 | Deep Dive |
| CVE-2024-29115 | WordPress Smart Online Order for Clover plugin <= 1.5.5 - Cross Site Scripting (XSS) vulnerability | Zaytech | Smart Online Order for Clover | Medium | 6.5 | 2024-03-19 14:56:16 | Deep Dive |
| CVE-2024-1918 | Byzoro Smart S42 Management Platform userattestation.php unrestricted upload | Byzoro | Smart S42 Management Platform | Medium | 4.7 | 2024-02-27 13:00:08 | Deep Dive |
| CVE-2023-7203 | Smart Forms < 2.6.87 - Subscriber+ Arbitrary Entry Deletion | Unknown | Smart Forms | 中危 | - | 2024-02-27 08:30:25 | Deep Dive |
| CVE-2024-0353 | Local privilege escalation in Windows products | ESET, spol. s r.o. | ESET NOD32 Antivirus | High | 7.8 | 2024-02-15 07:40:25 | Deep Dive |
| CVE-2024-0566 | Smart Manager < 8.28.0 - Admin+ SQL Injection | Unknown | Smart Manager | 低危 | - | 2024-02-12 16:06:00 | Deep Dive |
| CVE-2024-1254 | Byzoro Smart S20 Management Platform sysmanageajax.php sql injection | Byzoro | Smart S20 Management Platform | Medium | 4.7 | 2024-02-06 18:31:04 | Deep Dive |
| CVE-2024-1253 | Byzoro Smart S40 Management Platform Import web.php unrestricted upload | Byzoro | Smart S40 Management Platform | Medium | 4.7 | 2024-02-06 17:00:07 | Deep Dive |
| CVE-2023-6989 | Shield Security – Smart Bot Blocking & Intrusion Prevention Security <= 18.5.9 - Unauthenticated Local File Inclusion | paultgoodchild | Shield: Blocks Bots, Protects Users, and Prevents Security Breaches | Critical | 9.8 | 2024-02-05 21:21:31 | Deep Dive |