| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-69285 | SQLBot uploadExcel Endpoint has Unauthenticated Arbitrary File Upload vulnerability | dataease | SQLBot | - | - | 2026-01-21 20:05:22 | Deep Dive |
| CVE-2026-20803 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2022 (GDR) | High | 7.2 | 2026-01-13 17:56:06 | Deep Dive |
| CVE-2025-15107 | actiontech sqle JWT Secret jwt.go hard-coded key | actiontech | sqle | Low | 3.7 | 2025-12-27 12:32:06 | Deep Dive |
| CVE-2025-10703 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:47:08 | Deep Dive |
| CVE-2025-10702 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:46:27 | Deep Dive |
| CVE-2025-59499 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | High | 8.8 | 2025-11-11 17:59:46 | Deep Dive |
| CVE-2025-42890 | Insecure key & Secret Management vulnerability in SQL Anywhere Monitor (Non-Gui) | SAP_SE | SQL Anywhere Monitor (Non-Gui) | Critical | 10.0 | 2025-11-11 00:15:29 | Deep Dive |
| CVE-2025-11575 | MongoDB Atlas SQL ODBC driver installation via MSI may leave ACLs unset on custom installation directories | MongoDB | Atlas SQL ODBC driver | High | 7.8 | 2025-10-23 00:22:01 | Deep Dive |
| CVE-2025-59250 | JDBC Driver for SQL Server Spoofing Vulnerability | Microsoft | Microsoft JDBC Driver for SQL Server 10.2 | High | 8.1 | 2025-10-14 17:00:43 | Deep Dive |
| CVE-2025-58233 | WordPress SQL Chart Builder Plugin <= 2.3.7.2 - Cross Site Scripting (XSS) Vulnerability | Guaven Labs | SQL Chart Builder | Medium | 6.5 | 2025-09-22 18:23:40 | Deep Dive |
| CVE-2025-55227 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | High | 8.8 | 2025-09-09 17:01:32 | Deep Dive |
| CVE-2025-47997 | Microsoft SQL Server Information Disclosure Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | Medium | 6.5 | 2025-09-09 17:01:09 | Deep Dive |
| CVE-2025-7709 | Out Of Bounds write in FTS5 Extension in SQLite | SQLite | FTS5 | - | - | 2025-09-08 14:51:49 | Deep Dive |
| CVE-2025-47954 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2022 (CU 20) | High | 8.8 | 2025-08-12 17:10:31 | Deep Dive |
| CVE-2025-49759 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | High | 8.8 | 2025-08-12 17:09:56 | Deep Dive |
| CVE-2025-24999 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | High | 8.8 | 2025-08-12 17:09:50 | Deep Dive |
| CVE-2025-53727 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | High | 8.8 | 2025-08-12 17:09:44 | Deep Dive |
| CVE-2025-49758 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | High | 8.8 | 2025-08-12 17:09:43 | Deep Dive |
| CVE-2025-47907 | Incorrect results returned from Rows.Scan in database/sql | Go standard library | database/sql | - | - | 2025-08-07 15:25:31 | Deep Dive |
| CVE-2025-7458 | SQLite integer overflow in key info allocation may lead to information disclosure. | SQLite | SQLite | 中危 | - | 2025-07-29 12:43:19 | Deep Dive |