| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-40720 | Reflected Cross-site Scripting (XSS) vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:43:06 | Deep Dive |
| CVE-2025-40719 | Reflected Cross-site Scripting (XSS) vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:42:49 | Deep Dive |
| CVE-2025-40718 | Improper error handling vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:41:04 | Deep Dive |
| CVE-2025-40717 | SQL injection vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:37:28 | Deep Dive |
| CVE-2025-40716 | SQL injection vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:36:53 | Deep Dive |
| CVE-2025-40715 | SQL injection vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:36:15 | Deep Dive |
| CVE-2025-40714 | SQL injection vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:35:54 | Deep Dive |
| CVE-2025-40713 | SQL injection vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:35:32 | Deep Dive |
| CVE-2025-40712 | SQL injection vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:33:41 | Deep Dive |
| CVE-2025-40711 | SQL injection vulnerability in Quiter Gateway | Quiter | Quiter Gateway (Java WAR on Apache Tomcat) | - | - | 2025-07-08 11:33:16 | Deep Dive |
| CVE-2025-27446 | Apache APISIX Java Plugin Runner: Local listening file permissions in APISIX plugin runner allow a local attacker to elevate privileges | Apache Software Foundation | Apache APISIX Java Plugin Runner | 中危 | - | 2025-07-06 06:05:15 | Deep Dive |
| CVE-2024-35164 | Apache Guacamole: Improper input validation of console codes | Apache Software Foundation | Apache Guacamole | Medium | 6.8 | 2025-07-02 11:23:23 | Deep Dive |
| CVE-2025-46647 | Apache APISIX: improper validation of issuer from introspection discovery url in plugin openid-connect | Apache Software Foundation | Apache APISIX | - | - | 2025-07-02 11:08:47 | Deep Dive |
| CVE-2025-32897 | Apache Seata (incubating): Deserialization of untrusted Data in Apache Seata Server | Apache Software Foundation | Apache Seata (incubating) | - | - | 2025-06-28 18:25:18 | Deep Dive |
| CVE-2025-50213 | Apache Airflow Providers Snowflake: Potential SQL injection in CopyFromExternalStageToSnowflakeOperator | Apache Software Foundation | Apache Airflow Providers Snowflake | - | - | 2025-06-24 07:06:53 | Deep Dive |
| CVE-2025-32896 | Apache SeaTunnel: Unauthenticated insecure access | Apache Software Foundation | Apache SeaTunnel | - | - | 2025-06-19 10:38:37 | Deep Dive |
| CVE-2025-31698 | Apache Traffic Server: Client IP address from PROXY protocol is not used for ACL | Apache Software Foundation | Apache Traffic Server | - | - | 2025-06-19 10:07:47 | Deep Dive |
| CVE-2025-49763 | Apache Traffic Server: Remote DoS via memory exhaustion in ESI Plugin | Apache Software Foundation | Apache Traffic Server | - | - | 2025-06-19 10:07:15 | Deep Dive |
| CVE-2025-48976 | Apache Commons FileUpload, Apache Commons FileUpload: FileUpload DoS via part headers | Apache Software Foundation | Apache Commons FileUpload | 中危 | - | 2025-06-16 15:00:48 | Deep Dive |
| CVE-2025-49124 | Apache Tomcat: exe side-loading via icalcs.exe in Tomcat installer for Windows | Apache Software Foundation | Apache Tomcat | - | - | 2025-06-16 14:22:16 | Deep Dive |