| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-30040 | Missing authentication in API returning request logs containing session IDs | CGM | CGM CLININET | - | - | 2025-08-27 10:21:17 | Deep Dive |
| CVE-2025-30039 | Missing authentication in API returning a list of all active sessions | CGM | CGM CLININET | - | - | 2025-08-27 10:20:57 | Deep Dive |
| CVE-2025-30038 | Session ID leakage in Zone.Identifier of downloaded files | CGM | CGM CLININET | - | - | 2025-08-27 10:20:36 | Deep Dive |
| CVE-2025-30037 | Missing authentication in APIs allowing data retrieval and modification | CGM | CGM CLININET | - | - | 2025-08-27 10:20:18 | Deep Dive |
| CVE-2025-30036 | Stored XSS permitting session takeover of arbitrary user | CGM | CGM CLININET | - | - | 2025-08-27 10:19:41 | Deep Dive |
| CVE-2025-2313 | RCE via Print.pl in uhcPrintServerPrint | CGM | CGM CLININET | - | - | 2025-08-27 10:18:51 | Deep Dive |
| CVE-2025-31462 | WordPress CGM Event Calendar plugin <= 0.8.5 - Cross Site Scripting (XSS) Vulnerability | rzfarrell | CGM Event Calendar | High | 7.1 | 2025-04-01 20:58:11 | Deep Dive |