| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-33844 | IBM Security Verify Governance cross-site scripting | IBM | Security Verify Governance | Medium | 5.4 | 2025-04-09 14:03:59 | Deep Dive |
| CVE-2025-2876 | MelaPress Login Security and MelaPress Login Security Premium 2.1.0 - Missing Authorization to Unauthenticated Arbitrary User Deletion | melapress | MelaPress Login Security Premium | Medium | 5.3 | 2025-04-08 11:11:32 | Deep Dive |
| CVE-2025-3387 | renrenio renren-security JSON cross site scripting | renrenio | renren-security | Low | 3.5 | 2025-04-07 22:31:10 | Deep Dive |
| CVE-2024-11859 | DLL Search Order Hijacking in ESET products for Windows | ESET, spol. s r.o. | ESET NOD32 Antivirus | - | - | 2025-04-07 08:08:22 | Deep Dive |
| CVE-2025-3138 | PHPGurukul Online Security Guards Hiring System edit-guard-detail.php sql injection | PHPGurukul | Online Security Guards Hiring System | High | 7.3 | 2025-04-03 04:00:19 | Deep Dive |
| CVE-2025-3137 | PHPGurukul Online Security Guards Hiring System changeimage.php sql injection | PHPGurukul | Online Security Guards Hiring System | High | 7.3 | 2025-04-03 03:31:09 | Deep Dive |
| CVE-2025-31774 | WordPress plugin Astra Security Suite plugin<= 0.2 - Broken Access Control vulnerability | WebProtect.ai | Astra Security Suite | Medium | 5.3 | 2025-04-01 14:51:22 | Deep Dive |
| CVE-2025-31116 | Mobile Security Framework (MobSF) has a SSRF Vulnerability fix bypass on assetlinks_check with DNS Rebinding | MobSF | Mobile-Security-Framework-MobSF | Medium | 4.4 | 2025-03-31 16:42:43 | Deep Dive |
| CVE-2025-31456 | WordPress Ultimate Security Checker plugin <= 4.2 - Cross Site Request Forgery (CSRF) to Security Rescan vulnerability | bsndev | Ultimate Security Checker | Medium | 4.3 | 2025-03-28 11:54:11 | Deep Dive |
| CVE-2025-22223 | VMware Spring Security 安全漏洞 | Spring | Spring Security | Medium | 5.3 | 2025-03-24 17:42:50 | Deep Dive |
| CVE-2024-9103 | Persistent XSS in blocked messages | Forcepoint | Email Security | Medium | 6.1 | 2025-03-24 16:06:40 | Deep Dive |
| CVE-2025-2665 | PHPGurukul Online Security Guards Hiring System bwdates-reports-details.php sql injection | PHPGurukul | Online Security Guards Hiring System | High | 7.3 | 2025-03-23 21:31:05 | Deep Dive |
| CVE-2025-2658 | PHPGurukul Online Security Guards Hiring System search-request.php sql injection | PHPGurukul | Online Security Guards Hiring System | High | 7.3 | 2025-03-23 18:00:09 | Deep Dive |
| CVE-2025-22228 | CVE-2025-22228: Spring Security BCryptPasswordEncoder does not enforce maximum password length | Spring | Spring Security | High | 7.4 | 2025-03-20 05:49:19 | Deep Dive |
| CVE-2025-27705 | Absolute Secure Access 安全漏洞 | Absolute Security | Secure Access | 中危 | - | 2025-03-19 19:15:08 | Deep Dive |
| CVE-2025-27704 | Absolute Secure Access 安全漏洞 | Absolute Security | Secure Access | 中危 | - | 2025-03-19 19:08:26 | Deep Dive |
| CVE-2024-45644 | IBM Security ReaQta file upload | IBM | Security ReaQta | Medium | 4.7 | 2025-03-19 11:16:43 | Deep Dive |
| CVE-2025-2267 | WP01 – Speed, Security, SEO consultant <= 2.6.2 - Authenticated (Subscriber+) Arbitrary File Download | wp01ru | WP01 – Speed, Security, SEO consultant | Medium | 6.5 | 2025-03-15 03:23:24 | Deep Dive |
| CVE-2025-2056 | WP Ghost <= 5.4.01 - Unauthenticated Limited File Read | johndarrel | WP Ghost (Hide My WP Ghost) – Security & Firewall | High | 7.5 | 2025-03-14 04:22:35 | Deep Dive |
| CVE-2020-3122 | Cisco Content Security Management Appliance Information Disclosure Vulnerability | Cisco | Cisco IronPort Security Management Appliance | 中危 | - | 2025-03-04 18:22:12 | Deep Dive |