| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-49796 | Libxml: type confusion leads to denial of service (dos) | - | - | Critical | 9.1 | 2025-06-16 15:14:28 | Deep Dive |
| CVE-2025-2745 | AVEVA PI Web API Cross-site Scripting | AVEVA | PI Web API | Medium | 6.5 | 2025-06-12 19:42:27 | Deep Dive |
| CVE-2025-4613 | Client side RCE in Google Web Designer App | Web Designer App | - | - | 2025-06-12 09:06:05 | Deep Dive | |
| CVE-2025-5914 | Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c | - | - | High | 7.8 | 2025-06-09 19:53:49 | Deep Dive |
| CVE-2025-5523 | enilu web-flash File Upload upload fileService.upload cross site scripting | enilu | web-flash | Low | 3.5 | 2025-06-03 19:31:20 | Deep Dive |
| CVE-2025-40653 | User enumeration in M3M Printer Server Web | M3M | M3M Printer Server Web | - | - | 2025-05-26 12:54:09 | Deep Dive |
| CVE-2025-5140 | Seeyon Zhiyuan OA Web Application System ThirdMenuController.class this.oursNetService.getData server-side request forgery | Seeyon | Zhiyuan OA Web Application System | Medium | 6.3 | 2025-05-25 01:31:06 | Deep Dive |
| CVE-2025-47640 | WordPress Printcart Web to Print Product Designer for WooCommerce plugin <= 2.4.0 - SQL Injection Vulnerability | printcart | Printcart Web to Print Product Designer for WooCommerce | Critical | 9.3 | 2025-05-23 12:43:25 | Deep Dive |
| CVE-2025-47641 | WordPress Printcart Web to Print Product Designer for WooCommerce plugin <= 2.3.9 - Arbitrary File Upload Vulnerability | printcart | Printcart Web to Print Product Designer for WooCommerce | Critical | 10.0 | 2025-05-23 12:43:24 | Deep Dive |
| CVE-2025-3480 | MedDream WEB DICOM Viewer Cleartext Transmission of Credentials Information Disclosure Vulnerability | MedDream | WEB DICOM Viewer | - | - | 2025-05-22 00:51:29 | Deep Dive |
| CVE-2025-48127 | WordPress Push notification for Mobile and Web app plugin <= 2.0.3 - Broken Access Control vulnerability | App Cheap | Push notification for Mobile and Web app | Medium | 6.5 | 2025-05-16 15:45:11 | Deep Dive |
| CVE-2025-4649 | ACL are not correctly taken into account in the display of the "event logs" page. This page requiring, high privileges, will display all available logs. | Centreon | web | Medium | 4.9 | 2025-05-13 11:40:23 | Deep Dive |
| CVE-2025-4648 | A user with elevated privileges can inject XSS by altering the content of a SVG media during the submit request. | Centreon | web | High | 8.4 | 2025-05-13 09:45:42 | Deep Dive |
| CVE-2025-4647 | A user with elevated privileges can bypass sanitization measures by replacing the content of an existing SVG | Centreon | web | High | 8.4 | 2025-05-13 09:31:18 | Deep Dive |
| CVE-2025-4646 | A high privilege user is able to create and use a valid admin API token in centreon-web | Centreon | web | High | 7.2 | 2025-05-13 09:17:35 | Deep Dive |
| CVE-2025-1079 | RCE In Google Web Designer | Web Designer | High | 7.8 | 2025-05-12 20:03:09 | Deep Dive | |
| CVE-2025-41393 | Ricoh Web Image Monitor 跨站脚本漏洞 | Ricoh Company, Ltd. | Multiple laser printers and MFPs which implement Web Image Monitor | - | - | 2025-05-12 08:04:40 | Deep Dive |
| CVE-2025-4547 | SourceCodester Web-based Pharmacy Product Management System Add User Page cross site scripting | SourceCodester | Web-based Pharmacy Product Management System | Low | 2.4 | 2025-05-11 21:00:07 | Deep Dive |
| CVE-2025-4531 | Seeyon Zhiyuan OA Web Application System Beetl Template EhrSalaryPayrollServiceImpl.class postData code injection | Seeyon | Zhiyuan OA Web Application System | Medium | 6.3 | 2025-05-11 05:31:07 | Deep Dive |
| CVE-2025-4529 | Seeyon Zhiyuan OA Web Application System ZIP File M3CoreController.class download path traversal | Seeyon | Zhiyuan OA Web Application System | Medium | 4.3 | 2025-05-11 04:00:08 | Deep Dive |