| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-13551 | D-Link DIR-822K/DWR-M920 formWanConfigSetup buffer overflow | D-Link | DIR-822K | High | 8.8 | 2025-11-23 13:02:07 | Deep Dive |
| CVE-2025-13550 | D-Link DIR-822K/DWR-M920 formVpnConfigSetup buffer overflow | D-Link | DIR-822K | High | 8.8 | 2025-11-23 12:32:07 | Deep Dive |
| CVE-2025-13549 | D-Link DIR-822K formNtp sub_455524 buffer overflow | D-Link | DIR-822K | High | 8.8 | 2025-11-23 12:02:07 | Deep Dive |
| CVE-2025-13548 | D-Link DIR-822K/DWR-M920 formFirewallAdv buffer overflow | D-Link | DIR-822K | High | 8.8 | 2025-11-23 11:32:07 | Deep Dive |
| CVE-2025-13547 | D-Link DIR-822K/DWR-M920 formDdns memory corruption | D-Link | DIR-822K | High | 8.8 | 2025-11-23 11:02:07 | Deep Dive |
| CVE-2025-11676 | UPnP DOS in TL-WR940N V6 | TP-Link System Inc. | TL-WR940N V6 | 高危 | - | 2025-11-20 08:09:47 | Deep Dive |
| CVE-2025-11734 | Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links <= 1.2.5 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post Trashing | aioseo | Broken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links | Medium | 5.4 | 2025-11-18 09:27:35 | Deep Dive |
| CVE-2025-13306 | D-Link DWR-M920/DWR-M921/DIR-822K/DIR-825M formDebugDiagnosticRun system command injection | D-Link | DWR-M920 | Medium | 6.3 | 2025-11-17 23:32:06 | Deep Dive |
| CVE-2025-13305 | D-Link DWR-M920/DWR-M921/DWR-M960/DIR-822K/DIR-825M formTracerouteDiagnosticRun buffer overflow | D-Link | DWR-M920 | High | 8.8 | 2025-11-17 23:02:06 | Deep Dive |
| CVE-2025-13304 | D-Link DWR-M920/DWR-M921/DWR-M960/DWR-M961/DIR-825M formPingDiagnosticRun buffer overflow | D-Link | DWR-M920 | High | 8.8 | 2025-11-17 22:32:07 | Deep Dive |
| CVE-2025-13191 | D-Link DIR-816L soap.cgi soapcgi_main stack-based overflow | D-Link | DIR-816L | High | 8.8 | 2025-11-15 07:02:06 | Deep Dive |
| CVE-2025-13190 | D-Link DIR-816L __ajax_exporer.sgi scandir_main stack-based overflow | D-Link | DIR-816L | High | 8.8 | 2025-11-15 06:32:06 | Deep Dive |
| CVE-2025-13189 | D-Link DIR-816L gena.cgi genacgi_main stack-based overflow | D-Link | DIR-816L | High | 8.8 | 2025-11-15 06:02:06 | Deep Dive |
| CVE-2025-13188 | D-Link DIR-816L authentication.cgi authenticationcgi_main stack-based overflow | D-Link | DIR-816L | Critical | 9.8 | 2025-11-14 22:32:06 | Deep Dive |
| CVE-2022-50596 | D-Link DIR-1260 <= v1.20B05 GetDeviceSettings Unauthenticated Command Injection | D-Link | DIR-1260 | 超危 | - | 2025-11-06 19:58:52 | Deep Dive |
| CVE-2025-11987 | Visual Link Preview <= 2.2.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via visual-link-preview Shortcode | brechtvds | Visual Link Preview | Medium | 6.4 | 2025-11-05 09:27:40 | Deep Dive |
| CVE-2018-25120 | D-Link DNS-343 ShareCenter <= 1.05 Command Injection via /goform/Mail_Test | D-Link | DNS-343 ShareCenter | - | - | 2025-10-29 18:39:04 | Deep Dive |
| CVE-2025-12313 | D-Link DI-7001 MINI msp_info.htm command injection | D-Link | DI-7001 MINI | Medium | 6.3 | 2025-10-27 20:02:06 | Deep Dive |
| CVE-2025-12296 | D-Link DAP-2695 Firmware Update sub_4174B0 os command injection | D-Link | DAP-2695 | Medium | 4.7 | 2025-10-27 16:32:09 | Deep Dive |
| CVE-2025-12295 | D-Link DAP-2695 Firmware Update sub_40C6B8 signature verification | D-Link | DAP-2695 | Medium | 6.6 | 2025-10-27 16:32:06 | Deep Dive |