Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 173 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-9826 M-Files Hubshare 安全漏洞 M-Files CorporationHubshare--2025-09-15 10:15:16 Deep Dive
CVE-2025-53561 WordPress Prevent files / folders access Plugin <= 2.6.0 - Path Traversal Vulnerability miniOrangePrevent files / folders access Medium 6.5 2025-08-20 08:03:14 Deep Dive
CVE-2025-7725 Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal or Stripe, Social Share Buttons, OpenAI <= 26.1.0 - Unauthenticated Stored Cross-Site Scripting contest-galleryContest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe High 7.2 2025-08-01 04:24:29 Deep Dive
CVE-2019-25224 WP Database Backup < 5.2 - Unauthenticated OS Command Injection databasebackupWP Database Backup – Unlimited Database & Files Backup by Backup for WP Critical 9.8 2025-07-25 02:23:59 Deep Dive
CVE-2025-8021 Files Bucket Server 安全漏洞 -files-bucket-server High 7.5 2025-07-23 05:00:04 Deep Dive
CVE-2025-6716 Contest Gallery <= 26.0.8 - Authenticated (Author+) Stored Cross-Site Scripting contest-galleryContest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe Medium 6.4 2025-07-11 06:43:33 Deep Dive
CVE-2025-2091 Open redirection in M-Files Mobile M-Files CorporationM-Files Mobile--2025-06-16 08:27:13 Deep Dive
CVE-2025-5964 Path traversal in M-Files API M-Files CorporationM-Files Server--2025-06-15 19:42:25 Deep Dive
CVE-2025-4392 Shared Files <= 1.7.48 - Unauthenticated Stored Cross-Site Scripting via sanitize_file Function anssilaitilaShared Files – Frontend File Upload Form & Secure File Sharing High 7.2 2025-06-03 09:22:04 Deep Dive
CVE-2025-3862 Contest Gallery <= 26.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter contest-galleryContest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe Medium 6.4 2025-05-08 11:13:45 Deep Dive
CVE-2025-3923 Prevent Direct Access – Protect WordPress Files <= 2.8.8 - Unauthenticated Sensitive Information Exposure buildwpsPrevent Direct Access – Protect WordPress Files Medium 5.3 2025-04-25 05:25:08 Deep Dive
CVE-2025-3861 Prevent Direct Access 2.8.6 - 2.8.8.2 - Incorrect Authorization to Authenticated (Contributor+) Multiple Media Actions buildwpsPrevent Direct Access – Protect WordPress Files Medium 5.4 2025-04-25 05:25:07 Deep Dive
CVE-2025-39520 WordPress Checkout Files Upload for WooCommerce plugin <= 2.2.0 - Cross Site Scripting (XSS) Vulnerability WP WhamCheckout Files Upload for WooCommerce Medium 6.5 2025-04-16 12:45:50 Deep Dive
CVE-2025-3087 Stored XSS Vulnerability in M-Files Web M-Files CorporationM-Files Web--2025-04-04 06:40:07 Deep Dive
CVE-2025-3086 User in anonymous role could create and delete views M-Files CorporationM-Files Server--2025-04-04 06:37:43 Deep Dive
CVE-2025-2159 Stored XSS in M-Files Admin user interface M-Files CorporationM-Files Admin--2025-04-04 06:06:49 Deep Dive
CVE-2025-30066 changed-files 安全漏洞 tj-actionschanged-files High 8.6 2025-03-15 00:00:00 Deep Dive
CVE-2025-20926 SAMSUNG My Files 安全漏洞 Samsung MobileSamsung My Files Medium 5.5 2025-03-06 05:04:34 Deep Dive
CVE-2025-1513 Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons <= 26.0.0.1 - Unauthenticated Stored Cross-Site Scripting contest-galleryContest Gallery – Upload & Vote Photos, Media, Sell with PayPal & Stripe High 7.2 2025-02-28 05:23:15 Deep Dive
CVE-2025-1043 Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files <= 2.7.5 - Authenticated (Contributor+) Blind Server-Side Request Forgery via embeddoc Shortcode awsminEmbed Any Document – Embed PDF, Word, PowerPoint and Excel Files Medium 6.4 2025-02-20 11:09:31 Deep Dive