| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-49200 | Unencrypted backup contains sensitive information | SICK AG | SICK Field Analytics | Medium | 6.5 | 2025-06-12 14:27:58 | Deep Dive |
| CVE-2025-49199 | Backup files can be modified and uploaded | SICK AG | SICK Field Analytics | High | 8.8 | 2025-06-12 14:26:33 | Deep Dive |
| CVE-2025-49196 | Deprecated TLS version supported | SICK AG | SICK Field Analytics | Medium | 6.5 | 2025-06-12 14:20:53 | Deep Dive |
| CVE-2025-49193 | Missing HTTP Security Headers | SICK AG | Field Analytics | Medium | 4.2 | 2025-06-12 14:15:07 | Deep Dive |
| CVE-2025-49192 | Clickjacking | SICK AG | SICK Field Analytics | Medium | 4.3 | 2025-06-12 14:12:12 | Deep Dive |
| CVE-2025-49191 | Dashboards and iFrames can link malicious web content | SICK AG | SICK Field Analytics | Medium | 4.8 | 2025-06-12 14:08:03 | Deep Dive |
| CVE-2025-49190 | Server-Side Request Forgery | SICK AG | SICK Field Analytics | Medium | 4.3 | 2025-06-12 14:06:00 | Deep Dive |
| CVE-2025-49188 | Sensitive Data in URL | SICK AG | SICK Field Analytics | Medium | 5.3 | 2025-06-12 14:02:37 | Deep Dive |
| CVE-2025-49187 | User enumeration | SICK AG | SICK Field Analytics | Medium | 5.3 | 2025-06-12 13:29:46 | Deep Dive |
| CVE-2025-49186 | No brute-force protection | SICK AG | Field Analytics | Medium | 5.3 | 2025-06-12 13:27:43 | Deep Dive |
| CVE-2025-49185 | Stored Cross-Site-Script | SICK AG | SICK Field Analytics | Medium | 5.5 | 2025-06-12 13:25:43 | Deep Dive |
| CVE-2025-49184 | Information disclosure to unauthorized user | SICK AG | Field Analytics | High | 7.5 | 2025-06-12 13:24:07 | Deep Dive |
| CVE-2025-30930 | WordPress ACF: Yandex Maps Field plugin <= 1.1 - Cross Site Scripting (XSS) Vulnerability | Unreal Themes | ACF: Yandex Maps Field | Medium | 5.9 | 2025-06-06 12:54:19 | Deep Dive |
| CVE-2024-12873 | Custom Field Manager <= 1.0 - Reflected XSS Vulnerability | Unknown | Custom Field Manager | - | - | 2025-05-15 20:06:58 | Deep Dive |
| CVE-2025-39391 | WordPress Checkout Field Visibility for WooCommerce plugin <= 1.3.0 - Local File Inclusion vulnerability | zamartz | Checkout Field Visibility for WooCommerce | 中危 | - | 2025-04-24 16:08:34 | Deep Dive |
| CVE-2025-31327 | OData meta-data property entity tampering in SAP Field Logistics | SAP_SE | SAP Field Logistics | Medium | 4.3 | 2025-04-22 18:25:46 | Deep Dive |
| CVE-2025-26746 | WordPress Advanced Custom Fields: Link Picker Field plugin <= 1.2.8 - Reflected Cross Site Scripting (XSS) vulnerability | caalami | Advanced Custom Fields: Link Picker Field | High | 7.1 | 2025-04-15 21:53:10 | Deep Dive |
| CVE-2025-31382 | WordPress Language Field plugin <= 0.9 - CSRF to Stored XSS vulnerability | theode | Language Field | High | 7.1 | 2025-04-09 16:10:08 | Deep Dive |
| CVE-2025-31696 | RapiDoc OAS Field Formatter - Moderately critical - Cross site scripting - SA-CONTRIB-2025-025 | Drupal | RapiDoc OAS Field Formatter | 中危 | - | 2025-03-31 21:55:02 | Deep Dive |
| CVE-2025-31695 | Link field display mode formatter - Moderately critical - Cross site scripting - SA-CONTRIB-2025-024 | Drupal | Link field display mode formatter | 中危 | - | 2025-03-31 21:52:55 | Deep Dive |