| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-54014 | Skylark Holdings Skylark App 安全漏洞 | SKYLARK HOLDINGS CO., LTD. | 'Skylark' App for Android | - | - | 2024-12-05 02:42:14 | Deep Dive |
| CVE-2024-51465 | IBM App Connect Enterprise Certified Container command execution | IBM | App Connect Enterprise Certified Container | High | 8.8 | 2024-12-04 14:08:58 | Deep Dive |
| CVE-2024-45205 | Ubiquiti UniFi iOS 安全漏洞 | Ubiquiti | UniFi iOS App | 中危 | - | 2024-12-04 01:06:05 | Deep Dive |
| CVE-2024-52489 | WordPress Add Chat App Button plugin <= 2.1.5 - Cross Site Scripting (XSS) vulnerability | udidol | Add Chat App Button | Medium | 5.9 | 2024-12-02 13:48:55 | Deep Dive |
| CVE-2024-53751 | WordPress Build App Online plugin <= 1.0.23 - Cross Site Request Forgery (CSRF) vulnerability | hakeemnala | Build App Online | Medium | 5.4 | 2024-12-02 13:48:37 | Deep Dive |
| CVE-2024-5921 | GlobalProtect App: Insufficient Certificate Validation Leads to Privilege Escalation | Palo Alto Networks | GlobalProtect App | - | - | 2024-11-27 03:50:14 | Deep Dive |
| CVE-2024-11024 | AppPresser – Mobile App Framework <= 4.4.6 - Unauthenticated Privilege Escalation via Password Reset | scottopolis | AppPresser – Mobile App Framework | Critical | 9.8 | 2024-11-26 11:04:30 | Deep Dive |
| CVE-2024-9635 | Checkout with Cash App on WooCommerce <= 6.0.2 - Reflected Cross-Site Scripting | theafricanboss | Checkout with Cash App on WooCommerce | Medium | 6.1 | 2024-11-23 06:54:54 | Deep Dive |
| CVE-2024-52614 | EPARK Kura Sushi Official App 安全漏洞 | EPARK, Inc. | Kura Sushi Official App Produced by EPARK | - | - | 2024-11-20 05:12:41 | Deep Dive |
| CVE-2024-10533 | WP Chat App <= 3.6.8 - Missing Authorization to Authenticated (Subscriber+) Filebird Plugin Installation | ninjateam | WP Chat App | Medium | 4.3 | 2024-11-16 03:29:17 | Deep Dive |
| CVE-2024-11026 | Intelligent Apps Freenow App Keystore SSL.java hard-coded password | Intelligent Apps | Freenow App | Low | 3.7 | 2024-11-08 21:31:05 | Deep Dive |
| CVE-2024-51751 | Arbitrary file read with File and UploadButton components in Gradio | gradio-app | gradio | Medium | 6.5 | 2024-11-06 19:11:39 | Deep Dive |
| CVE-2024-50528 | WordPress Stacks Mobile App Builder plugin <= 5.2.3 - Sensitive Data Exposure vulnerability | Stacks | Stacks Mobile App Builder | High | 7.5 | 2024-11-04 14:07:19 | Deep Dive |
| CVE-2024-50527 | WordPress Stacks Mobile App Builder plugin <= 5.2.3 - Arbitrary File Upload vulnerability | Stacks | Stacks Mobile App Builder | Critical | 10.0 | 2024-11-04 13:42:39 | Deep Dive |
| CVE-2024-10748 | Cosmote Greece What's Up App Realm Database RealmDB.java default key | Cosmote Greece | What's Up App | Low | 2.5 | 2024-11-04 00:31:05 | Deep Dive |
| CVE-2024-37276 | WordPress Featured Image from URL (FIFU) plugin <= 4.8.1 - Broken Access Control vulnerability | fifu.app | Featured Image from URL | Medium | 5.3 | 2024-11-01 14:18:27 | Deep Dive |
| CVE-2024-37516 | WordPress Featured Image from URL (FIFU) plugin <= 4.8.2 - Broken Access Control vulnerability | fifu.app | Featured Image from URL | Medium | 6.3 | 2024-11-01 14:18:13 | Deep Dive |
| CVE-2024-43933 | WordPress WPMobile.App plugin <= 11.48 - CSRF to Stored XSS vulnerability | Amauri | WPMobile.App | Medium | 4.3 | 2024-10-31 10:04:19 | Deep Dive |
| CVE-2024-50415 | WordPress Ads.txt & App-ads.txt Manager for WordPress plugin <= 1.1.7.1 - Stored Cross Site Scripting (XSS) vulnerability | Pagup | Ads.txt & App-ads.txt Manager for WordPress | Medium | 5.9 | 2024-10-29 08:46:13 | Deep Dive |
| CVE-2024-50477 | WordPress Stacks Mobile App Builder plugin <= 5.2.3 - Account Takeover vulnerability | Stacks | Stacks Mobile App Builder | Critical | 9.8 | 2024-10-28 11:23:07 | Deep Dive |