| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2011-10008 | MPlayer Lite r33064 M3U Stack-Based Buffer Overflow | MPlayer Project | MPlayer Lite | - | - | 2025-07-31 14:58:29 | Deep Dive |
| CVE-2013-10033 | Kimai 0.9.2 db_restore.php SQL Injection | Kimai Project | Kimai | - | - | 2025-07-31 14:56:59 | Deep Dive |
| CVE-2025-53357 | GLPI permits reservation modification by unauthorized users | glpi-project | glpi | Medium | 5.4 | 2025-07-30 14:17:59 | Deep Dive |
| CVE-2025-53113 | GLPI technicians can access unauthorized information through external links | glpi-project | glpi | Low | 2.7 | 2025-07-30 14:16:37 | Deep Dive |
| CVE-2025-53112 | GLPI's incomprehensive permission checks can lead to data removal from allowed users | glpi-project | glpi | Medium | 4.3 | 2025-07-30 14:15:22 | Deep Dive |
| CVE-2025-53111 | GLPI exposes data to non-allowed users | glpi-project | glpi | Medium | 6.5 | 2025-07-30 14:14:26 | Deep Dive |
| CVE-2025-53008 | GLPI's MailCollector Receiver is vulnerable to credential exfiltration | glpi-project | glpi | Medium | 6.5 | 2025-07-30 14:09:59 | Deep Dive |
| CVE-2025-52897 | GLPI is vulnerable to XSS and open redirection attacks through planning feature | glpi-project | glpi | Medium | 6.5 | 2025-07-30 14:07:59 | Deep Dive |
| CVE-2025-52567 | GLPI has overly permissive URL verification | glpi-project | glpi | Low | 3.5 | 2025-07-30 14:07:15 | Deep Dive |
| CVE-2025-27514 | GLPI is susceptible to Stored XSS attack through project's kanban | glpi-project | glpi | Medium | 4.5 | 2025-07-29 17:39:29 | Deep Dive |
| CVE-2013-10032 | GetSimple CMS 3.2.1 Authenticated RCE via Arbitrary PHP File Upload | GetSimple CMS Project | GetSimple CMS | 中危 | - | 2025-07-25 15:51:24 | Deep Dive |
| CVE-2018-25113 | Dicoogle PACS Web Server 2.5.0 Unauthenticated Path Traversal | Dicoogle Project | PACS Web Server | 中危 | - | 2025-07-23 13:50:31 | Deep Dive |
| CVE-2025-7886 | pmTicket Project-Management-Software class.database.php getUserLanguage sql injection | pmTicket | Project-Management-Software | High | 7.3 | 2025-07-20 11:32:05 | Deep Dive |
| CVE-2025-50061 | Oracle Construction and Engineering Suite 安全漏洞 | Oracle Corporation | Primavera P6 Enterprise Project Portfolio Management | Medium | 5.4 | 2025-07-15 19:27:35 | Deep Dive |
| CVE-2025-34116 | IPFire < 2.19 Core Update 101 proxy.cgi RCE | IPFire Project | IPFire | - | - | 2025-07-15 13:02:32 | Deep Dive |
| CVE-2025-52994 | phpThumb 操作系统命令注入漏洞 | phpThumb project | phpThumb | Medium | 4.9 | 2025-07-11 00:00:00 | Deep Dive |
| CVE-2025-53743 | Jenkins plugin Applitools Eyes 安全漏洞 | Jenkins Project | Jenkins Applitools Eyes Plugin | - | - | 2025-07-09 15:39:56 | Deep Dive |
| CVE-2025-53742 | Jenkins plugin Applitools Eyes 安全漏洞 | Jenkins Project | Jenkins Applitools Eyes Plugin | - | - | 2025-07-09 15:39:55 | Deep Dive |
| CVE-2025-53678 | Jenkins plugin User1st uTester 安全漏洞 | Jenkins Project | Jenkins User1st uTester Plugin | - | - | 2025-07-09 15:39:43 | Deep Dive |
| CVE-2025-53677 | Jenkins plugin Xooa 安全漏洞 | Jenkins Project | Jenkins Xooa Plugin | - | - | 2025-07-09 15:39:43 | Deep Dive |