| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-12296 | D-Link DAP-2695 Firmware Update sub_4174B0 os command injection | D-Link | DAP-2695 | Medium | 4.7 | 2025-10-27 16:32:09 | Deep Dive |
| CVE-2025-12295 | D-Link DAP-2695 Firmware Update sub_40C6B8 signature verification | D-Link | DAP-2695 | Medium | 6.6 | 2025-10-27 16:32:06 | Deep Dive |
| CVE-2025-62970 | WordPress Link Whisper Free plugin <= 0.9.2 - Broken Access Control vulnerability | Spencer Haws | Link Whisper Free | Medium | 5.3 | 2025-10-27 01:34:15 | Deep Dive |
| CVE-2025-62906 | WordPress Referral Link Tracker plugin <= 1.1.4 - Broken Access Control vulnerability | epiphanyit321 | Referral Link Tracker | Medium | 4.3 | 2025-10-27 01:33:52 | Deep Dive |
| CVE-2025-49901 | WordPress Simple Link Directory plugin < 14.8.1 - Broken Authentication vulnerability | quantumcloud | Simple Link Directory | - | - | 2025-10-22 14:32:10 | Deep Dive |
| CVE-2025-7851 | Unauthorized root access via debug functionality | TP-Link Systems Inc. | Omada gateways | - | - | 2025-10-21 00:29:06 | Deep Dive |
| CVE-2025-7850 | Authenticated OS command execution | TP-Link Systems Inc. | Omada gateways | - | - | 2025-10-21 00:28:12 | Deep Dive |
| CVE-2025-6542 | OS command injection in multiple parameters | TP-Link Systems Inc. | Omada gateways | - | - | 2025-10-21 00:23:09 | Deep Dive |
| CVE-2025-6541 | OS command injection using information obtained from the web management interface | TP-Link Systems Inc. | Omada gateways | - | - | 2025-10-21 00:21:43 | Deep Dive |
| CVE-2025-60344 | D-Link DSR-150 安全漏洞 | D-Link | DSR-150 | High | 8.6 | 2025-10-21 00:00:00 | Deep Dive |
| CVE-2025-34253 | D-Link Nuclias Connect <= v1.3.1.4 Stored Cross-Site Scripting (XSS) | D-Link | Nuclias Connect | - | - | 2025-10-16 18:53:50 | Deep Dive |
| CVE-2025-34255 | D-Link Nuclias Connect <= v1.3.1.4 Forgot Password Account Enumeration | D-Link | Nuclias Connect | - | - | 2025-10-16 18:53:00 | Deep Dive |
| CVE-2025-34254 | D-Link Nuclias Connect <= v1.3.1.4 Login Account Enumeration | D-Link | Nuclias Connect | - | - | 2025-10-16 18:52:08 | Deep Dive |
| CVE-2025-11665 | D-Link DAP-2695 Firmware Update rgbin fwupdater_main os command injection | D-Link | DAP-2695 | Medium | 4.7 | 2025-10-13 06:32:06 | Deep Dive |
| CVE-2025-34248 | D-Link Nuclias Connect < v1.3.1.4 Directory Traversal to Arbitrary File Deletion | D-Link | Nuclias Connect | - | - | 2025-10-09 20:43:53 | Deep Dive |
| CVE-2025-11488 | D-Link DIR-852 HNAP1 command injection | D-Link | DIR-852 | High | 7.3 | 2025-10-08 18:02:09 | Deep Dive |
| CVE-2025-11408 | D-Link DI-7001 MINI dbsrv.asp buffer overflow | D-Link | DI-7001 MINI | High | 8.8 | 2025-10-07 20:32:06 | Deep Dive |
| CVE-2025-11407 | D-Link DI-7001 MINI upgrade_filter.asp os command injection | D-Link | DI-7001 MINI | Medium | 6.3 | 2025-10-07 20:02:06 | Deep Dive |
| CVE-2025-11339 | D-Link DI-7100G C1 jhttpd hi_block.asp sub_4BD4F8 buffer overflow | D-Link | DI-7100G C1 | High | 8.8 | 2025-10-06 16:32:09 | Deep Dive |
| CVE-2025-11338 | D-Link DI-7100G C1 jhttpd login.cgi sub_4C0990 buffer overflow | D-Link | DI-7100G C1 | High | 8.8 | 2025-10-06 16:02:08 | Deep Dive |