| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-22148 | WordPress WP Smart Editor Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS) | WP Smart Editor | JoomUnited | High | 7.1 | 2024-02-01 09:37:56 | Deep Dive |
| CVE-2024-22163 | WordPress Shield Security Plugin <= 18.5.7 is vulnerable to Cross Site Scripting (XSS) | Shield Security | Shield Security – Smart Bot Blocking & Intrusion Prevention Security | High | 7.1 | 2024-01-31 17:57:37 | Deep Dive |
| CVE-2023-7043 | Unquoted path privilege vulnerability in ESET products for Windows | ESET, spol. s r.o. | ESET Endpoint Security | Low | 3.3 | 2024-01-31 12:51:38 | Deep Dive |
| CVE-2024-0664 | Meks Smart Social Widget <= 1.6.3 - Authenticated (Admin+) Stored Cross-Site Scripting | mekshq | Meks Smart Social Widget | Medium | 4.4 | 2024-01-27 03:32:45 | Deep Dive |
| CVE-2024-0939 | Byzoro Smart S210 Management Platform uploadfile.php unrestricted upload | Byzoro | Smart S210 Management Platform | Medium | 6.3 | 2024-01-26 18:31:04 | Deep Dive |
| CVE-2024-20263 | Cisco Small Business 安全漏洞 | Cisco | Cisco Small Business Smart and Managed Switches | Medium | 5.8 | 2024-01-26 17:27:09 | Deep Dive |
| CVE-2024-0716 | Byzoro Smart S150 Management Platform Backup File download.php information disclosure | Byzoro | Smart S150 Management Platform | Low | 3.1 | 2024-01-19 15:00:06 | Deep Dive |
| CVE-2022-45845 | WordPress Smart Slider 3 Plugin <= 3.5.1.9 is vulnerable to PHP Object Injection | Nextend | Smart Slider 3 | Medium | 4.3 | 2024-01-19 14:42:11 | Deep Dive |
| CVE-2024-0712 | Byzoro Smart S150 Management Platform userattea.php access control | Byzoro | Smart S150 Management Platform | High | 7.3 | 2024-01-19 13:31:05 | Deep Dive |
| CVE-2024-0300 | Byzoro Smart S150 Management Platform HTTP POST Request userattestation.php unrestricted upload | Byzoro | Smart S150 Management Platform | Medium | 6.3 | 2024-01-08 06:00:04 | Deep Dive |
| CVE-2023-6998 | Lockscreen bypass in eWeLink App | CoolKit Technology | eWeLink - Smart Home | High | 7.7 | 2023-12-30 18:32:07 | Deep Dive |
| CVE-2023-5594 | Improper following of a certificate's chain of trust in ESET security products | ESET, spol. s r.o. | ESET NOD32 Antivirus | High | 7.5 | 2023-12-21 11:30:41 | Deep Dive |
| CVE-2023-49854 | WordPress Caddy Plugin <= 1.9.7 is vulnerable to Cross Site Request Forgery (CSRF) | Tribe Interactive | Caddy – Smart Side Cart for WooCommerce | Medium | 5.4 | 2023-12-18 10:48:45 | Deep Dive |
| CVE-2023-49771 | WordPress Smart External Link Click Monitor [Link Log] Plugin <= 5.0.2 is vulnerable to Cross Site Scripting (XSS) | Peter Raschendorfer | Smart External Link Click Monitor [Link Log] | High | 7.1 | 2023-12-14 15:48:21 | Deep Dive |
| CVE-2023-49770 | WordPress Smart External Link Click Monitor [Link Log] Plugin <= 5.0.2 is vulnerable to Cross Site Scripting (XSS) | Peter Raschendorfer | Smart External Link Click Monitor [Link Log] | Medium | 5.9 | 2023-12-14 15:45:10 | Deep Dive |
| CVE-2023-49577 | Cross-Site Scripting (XSS) vulnerability in the SAP HCM (SMART PAYE solution) | SAP_SE | SAP HCM (SMART PAYE solution) | Medium | 6.1 | 2023-12-12 01:04:04 | Deep Dive |
| CVE-2023-6574 | Byzoro Smart S20 HTTP POST Request updateos.php unrestricted upload | Byzoro | Smart S20 | Medium | 6.3 | 2023-12-07 19:31:04 | Deep Dive |
| CVE-2023-6274 | Byzoro Smart S80 PHP File updatelib.php unrestricted upload | Byzoro | Smart S80 | Medium | 6.3 | 2023-11-24 14:00:05 | Deep Dive |
| CVE-2023-47551 | WordPress Donations Made Easy – Smart Donations Plugin <= 4.0.12 is vulnerable to Cross Site Request Forgery (CSRF) | RedNao | Donations Made Easy – Smart Donations | Medium | 5.4 | 2023-11-18 21:50:45 | Deep Dive |
| CVE-2023-47550 | WordPress Donations Made Easy – Smart Donations Plugin <= 4.0.12 is vulnerable to Cross Site Scripting (XSS) | RedNao | Donations Made Easy – Smart Donations | High | 7.1 | 2023-11-14 20:03:38 | Deep Dive |