| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-49337 | WordPress Dashboard Beacon plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability | janhenckens | Dashboard Beacon | Medium | 5.9 | 2025-12-31 17:21:05 | Deep Dive |
| CVE-2025-62087 | WordPress Sticky Notes for WP Dashboard plugin <= 1.2.4 - Broken Access Control vulnerability | Web Builder 143 | Sticky Notes for WP Dashboard | Medium | 4.3 | 2025-12-31 16:08:59 | Deep Dive |
| CVE-2019-25245 | Ross Video DashBoard 8.5.1 Privilege Escalation via Insecure Permissions | Ross Video Ltd. | DashBoard | High | 8.8 | 2025-12-24 19:28:00 | Deep Dive |
| CVE-2025-14399 | Download Plugins and Themes from Dashboard <= 1.9.6 - Cross-Site Request Forgery to Bulk Plugin/Theme Archival | wpcodefactory | Download Plugins and Themes in ZIP from Dashboard | Medium | 4.3 | 2025-12-17 07:21:02 | Deep Dive |
| CVE-2025-13414 | Chamber Dashboard Business Directory <= 3.3.11 - Missing Authorization to Unauthenticated Business Information Export | gwendydd | Chamber Dashboard Business Directory | Medium | 5.3 | 2025-11-25 07:28:19 | Deep Dive |
| CVE-2025-64483 | Wazuh API – Agent Configuration Has Improper Access Control in Agent Enrollment Endpoint | wazuh | wazuh-dashboard-plugins | 中危 | - | 2025-11-21 17:55:33 | Deep Dive |
| CVE-2025-62714 | Karmada Dashboard API Unauthorized Access Vulnerability | karmada-io | dashboard | 中危 | - | 2025-10-24 15:42:00 | Deep Dive |
| CVE-2025-10660 | WP Dashboard Chat <= 1.0.3 - Authenticated (Contributor+) SQL Injection via id | nicholasbosch | WP Dashboard Chat | Medium | 6.5 | 2025-10-15 08:25:51 | Deep Dive |
| CVE-2025-10377 | System Dashboard <= 2.8.20 - Cross-Site Request Forgery | qriouslad | System Dashboard | Medium | 4.3 | 2025-09-26 03:25:35 | Deep Dive |
| CVE-2025-57927 | WordPress Dashboard Notepad Plugin <= 1.42 - Cross Site Request Forgery (CSRF) Vulnerability | Stephanie Leary | Dashboard Notepad | Medium | 4.3 | 2025-09-22 18:25:08 | Deep Dive |
| CVE-2025-32486 | WordPress Material Dashboard plugin <= 1.4.6 - Privilege Escalation Vulnerability | Hossein | Material Dashboard | Critical | 9.8 | 2025-09-09 16:25:32 | Deep Dive |
| CVE-2025-20348 | Cisco Nexus Dashboard Unauthorized REST API Vulnerability | Cisco | Cisco Nexus Dashboard | Medium | 5.0 | 2025-08-27 16:23:01 | Deep Dive |
| CVE-2025-20344 | Cisco Nexus Dashboard Path Traversal Vulnerability | Cisco | Cisco Nexus Dashboard | Medium | 6.5 | 2025-08-27 16:22:59 | Deep Dive |
| CVE-2025-53293 | WordPress Dashboard Widget Sidebar plugin <= 1.2.3 - Broken Access Control Vulnerability | Morten Dalgaard Johansen | Dashboard Widget Sidebar | Medium | 4.3 | 2025-06-27 13:21:26 | Deep Dive |
| CVE-2025-5928 | WP Sliding Login/Dashboard Panel <= 2.1.1 - Cross-Site Request Forgery to Settings Update | fay-1 | WP Sliding Login/Dashboard Panel | Medium | 4.3 | 2025-06-13 01:47:51 | Deep Dive |
| CVE-2025-49310 | WordPress Frontend Dashboard plugin <= 2.2.8 - Cross Site Scripting (XSS) Vulnerability | M A Vinoth Kumar | Frontend Dashboard | Medium | 6.5 | 2025-06-06 12:53:51 | Deep Dive |
| CVE-2025-20163 | Cisco Nexus Dashboard Fabric Controller SSH Host Key Vulnerability | Cisco | Cisco Data Center Network Manager | High | 8.7 | 2025-06-04 16:17:44 | Deep Dive |
| CVE-2025-4429 | WordPress Gearside Developer Dashboard <= 1.0.72 - Reflected XSS | Unknown | Gearside Developer Dashboard | - | - | 2025-05-30 06:00:06 | Deep Dive |
| CVE-2023-7239 | wp-dashboard-notes < 1.0.11 - Contributor+ Arbitrary Private Notes Update via IDOR | Unknown | WP Dashboard Notes | - | - | 2025-05-15 20:09:27 | Deep Dive |
| CVE-2025-4474 | Frontend Dashboard 1.0 - 2.2.7 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation via fed_admin_setting_form_function Function | vinoth06 | Frontend Dashboard | High | 8.8 | 2025-05-13 06:40:57 | Deep Dive |