| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-0070 | Improper Authentication in SAP NetWeaver ABAP Server and ABAP Platform | SAP_SE | SAP NetWeaver Application Server for ABAP and ABAP Platform | Critical | 9.9 | 2025-01-14 00:10:03 | Deep Dive |
| CVE-2025-0068 | Missing Authorization check in Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP | SAP_SE | SAP NetWeaver Application Server ABAP | Medium | 4.3 | 2025-01-14 00:09:53 | Deep Dive |
| CVE-2025-0067 | Missing Authorization check in SAP NetWeaver Application Server Java | SAP_SE | SAP NetWeaver Application Server Java | Medium | 6.3 | 2025-01-14 00:09:41 | Deep Dive |
| CVE-2025-0059 | Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) | SAP_SE | SAP NetWeaver Application Server ABAP (applications based on SAP GUI for HTML) | Medium | 6.0 | 2025-01-14 00:09:07 | Deep Dive |
| CVE-2025-0057 | Cross-Site Scripting vulnerability in SAP NetWeaver AS JAVA (User Admin Application) | SAP_SE | SAP NetWeaver AS JAVA (User Admin Application) | Medium | 4.8 | 2025-01-14 00:08:51 | Deep Dive |
| CVE-2025-0053 | Information Disclosure Vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server for ABAP and ABAP Platform | Medium | 5.3 | 2025-01-14 00:08:22 | Deep Dive |
| CVE-2025-22591 | WordPress 1003 Mortgage Application plugin <= 1.87 - Broken Access Control vulnerability | 8blocks | 1003 Mortgage Application | Medium | 4.3 | 2025-01-07 14:57:02 | Deep Dive |
| CVE-2025-22592 | WordPress 1003 Mortgage Application plugin <= 1.87 - Broken Access Control vulnerability | 8blocks | 1003 Mortgage Application | High | 7.5 | 2025-01-07 14:57:01 | Deep Dive |
| CVE-2024-8447 | Narayana: deadlock via multiple join requests sent to lra coordinator | - | - | Medium | 5.9 | 2025-01-02 20:19:30 | Deep Dive |
| CVE-2024-10973 | Keycloak: cli option for encrypted jgroups ignored | - | - | Medium | 5.7 | 2024-12-17 22:59:39 | Deep Dive |
| CVE-2024-12420 | WPMobile.App — Android and iOS Mobile Application <= 11.52 - Unauthenticated Arbitrary Shortcode Execution | amauric | WPMobile.App | Medium | 6.5 | 2024-12-13 08:24:49 | Deep Dive |
| CVE-2024-12397 | Io.quarkus.http/quarkus-http-core: quarkus http cookie smuggling | - | - | High | 7.4 | 2024-12-12 09:05:28 | Deep Dive |
| CVE-2024-11598 | Ivanti Application Control 安全漏洞 | Ivanti | Application Control | High | 7.8 | 2024-12-11 16:50:14 | Deep Dive |
| CVE-2024-11773 | Ivanti CSA 安全漏洞 | Ivanti | Cloud Services Application | Critical | 9.1 | 2024-12-10 18:56:09 | Deep Dive |
| CVE-2024-11772 | Ivanti CSA 安全漏洞 | Ivanti | Cloud Services Application | Critical | 9.1 | 2024-12-10 18:55:44 | Deep Dive |
| CVE-2024-11639 | Ivanti CSA 安全漏洞 | Ivanti | Cloud Services Application | Critical | 10.0 | 2024-12-10 18:54:43 | Deep Dive |
| CVE-2024-54198 | Information Disclosure vulnerability through Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP | SAP_SE | SAP NetWeaver Application Server ABAP | High | 8.5 | 2024-12-10 00:12:48 | Deep Dive |
| CVE-2024-47585 | Missing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server for ABAP and ABAP Platform | Medium | 4.3 | 2024-12-10 00:12:30 | Deep Dive |
| CVE-2024-12369 | Elytron-oidc-client: oidc authorization code injection | - | - | Medium | 4.2 | 2024-12-09 20:53:09 | Deep Dive |
| CVE-2024-10492 | Keycloak-quarkus-server: keycloak path trasversal | - | - | 低危 | - | 2024-11-25 07:37:31 | Deep Dive |