Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 2554 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-47794 Nextcloud Server vulnerable to insecure temporary file creation, race with write access and permission nextcloudsecurity-advisories Low 2.6 2025-05-16 14:35:25 Deep Dive
CVE-2025-47793 Nextcloud Server and Groupfolders app vulnerable to bypass of group folder quota limit using attachment in text file nextcloudsecurity-advisories Medium 4.3 2025-05-16 14:31:51 Deep Dive
CVE-2025-47792 Nextcloud Desktop 3rdparty applications can create share links via socket API nextcloudsecurity-advisories Medium 5.0 2025-05-16 14:13:53 Deep Dive
CVE-2025-47791 Nextcloud Server's test remote endpoint is not rate limited nextcloudsecurity-advisories Medium 4.3 2025-05-16 14:09:27 Deep Dive
CVE-2025-47790 Nextcloud Server doesn't request second factor after session timeout nextcloudsecurity-advisories Medium 6.4 2025-05-16 14:02:58 Deep Dive
CVE-2025-3440 IBM Security Guardium cross-site scripting IBMSecurity Guardium Medium 5.5 2025-05-15 15:40:35 Deep Dive
CVE-2025-4579 WP Content Security Plugin <= 2.3 - Unauthenticated Stored Cross-Site Scripting via CSP-Report Fields dylandWP Content Security Plugin High 7.2 2025-05-15 01:59:24 Deep Dive
CVE-2025-0131 GlobalProtect App: Incorrect Privilege Management Vulnerability in OPSWAT MetaDefender Endpoint Security SDK OPSWATMetaDefender Endpoint Security SDK--2025-05-14 18:06:46 Deep Dive
CVE-2024-6364 Server Identity Validation Bypass in Absolute Persistence® Absolute SecurityAbsolute Persistence--2025-05-13 17:00:07 Deep Dive
CVE-2025-20182 Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software and IOS XE Software IKEv2 Denial of Service Vulnerability CiscoCisco Adaptive Security Appliance (ASA) Software High 8.6 2025-05-07 17:18:14 Deep Dive
CVE-2025-46730 Mobile Security Framework (MobSF) Allows Web Server Resource Exhaustion via ZIP of Death Attack MobSFMobile-Security-Framework-MobSF Medium 6.8 2025-05-05 19:32:24 Deep Dive
CVE-2025-46335 Mobile Security Framework (MobSF) Allows Stored Cross Site Scripting (XSS) via malicious SVG Icon Upload MobSFMobile-Security-Framework-MobSF--2025-05-05 18:24:00 Deep Dive
CVE-2025-3452 SecuPress Free <= 2.3.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation secupressSecuPress with Simple SSL – Simple and Performant Security Medium 4.3 2025-04-29 08:21:44 Deep Dive
CVE-2025-32955 Harden-Runner Evasion of 'disable-sudo' policy step-securityharden-runner Medium 6.0 2025-04-21 20:45:58 Deep Dive
CVE-2025-2517 Reference to Expired Domain Vulnerability in OpenText™ ArcSight Enterprise Security Manager OpenTextArcSight Enterprise Security Manager 高危 -2025-04-21 14:26:05 Deep Dive
CVE-2020-36845 KnowBe4 Security Awareness Training 安全漏洞 KnowBe4Security Awareness Training Medium 5.3 2025-04-20 00:00:00 Deep Dive
CVE-2020-36844 KnowBe4 Security Awareness Training 安全漏洞 KnowBe4Security Awareness Training Medium 6.1 2025-04-20 00:00:00 Deep Dive
CVE-2025-32377 Rasa Pro Missing Authentication For Voice Connector APIs RasaHQrasa-pro-security-advisories Medium 6.5 2025-04-18 19:59:32 Deep Dive
CVE-2025-39565 WordPress MelaPress Login Security plugin <= 2.1.0 - PHP Object Injection Vulnerability MelapressMelaPress Login Security Medium 6.6 2025-04-16 12:44:32 Deep Dive
CVE-2025-25023 IBM Security Guardium information disclosure IBMSecurity Guardium Medium 4.9 2025-04-09 14:07:13 Deep Dive