Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 736 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-24369 WordPress The Grid plugin < 2.8.0 - Broken Access Control vulnerability Theme-oneThe Grid High 7.1 2026-03-25 16:14:32 Deep Dive
CVE-2026-4038 Aimogen Pro <= 2.7.5 - Unauthenticated Privilege Escalation via Arbitrary Function Call CodeRevolutionAimogen Pro - All-in-One AI Content Writer, Editor, ChatBot & Automation Toolkit Critical 9.8 2026-03-20 03:37:02 Deep Dive
CVE-2026-32409 WordPress Forminator plugin <= 1.50.2 - Broken Access Control vulnerability WPMU DEV - Your All-in-One WordPress PlatformForminator 中危 -2026-03-13 11:42:14 Deep Dive
CVE-2026-32340 WordPress Business One Page theme <= 1.3.2 - Broken Access Control vulnerability rarathemeBusiness One Page 中危 -2026-03-13 11:41:57 Deep Dive
CVE-2026-0489 DOM-based Cross-Site Scripting (XSS) Vulnerability in SAP Business One (Job Service) SAP_SESAP Business One (Job Service) Medium 6.1 2026-03-10 00:17:02 Deep Dive
CVE-2026-1706 All-in-One Video Gallery <= 4.7.1 - Reflected Cross-Site Scripting via 'vi' Parameter plugins360All-in-One Video Gallery Medium 6.1 2026-03-04 09:24:30 Deep Dive
CVE-2026-2628 All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login <= 2.2.5 - Authentication Bypass cyberlord92All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login Critical 9.8 2026-03-03 01:21:50 Deep Dive
CVE-2025-14864 Virusdie <= 1.1.7 - Missing Authorization to Authenticated (Subscriber+) API Key Disclosure virusdieVirusdie – One-click website security Medium 4.3 2026-02-19 04:36:19 Deep Dive
CVE-2026-2019 Cart All In One For WooCommerce <= 1.1.21 - Authenticated (Administrator+) Code Injection via 'sc_assign_page' Setting villathemeCart All In One For WooCommerce High 7.2 2026-02-18 06:42:39 Deep Dive
CVE-2025-11737 VK All in One Expansion Unit <= 9.112.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via SNS Title kurudriveVK All in One Expansion Unit Medium 6.4 2026-02-18 05:29:16 Deep Dive
CVE-2026-1714 ShopLentor <= 3.3.2 - Unauthenticated Email Relay Abuse via 'woolentor_suggest_price_action' AJAX Action devitemsllcShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin High 8.6 2026-02-18 04:35:46 Deep Dive
CVE-2025-6792 One to one user Chat by WPGuppy <= 1.1.4 - Unauthenticated Information Disclosure via Chat Message Interception amentotechpvtltdOne to one user Chat by WPGuppy Medium 5.3 2026-02-14 06:42:26 Deep Dive
CVE-2026-1997 Certain HP OfficeJet Pro Printers - Information Disclosure HP IncHP OfficeJet Pro 8730 All-in-One Printer--2026-02-10 17:54:47 Deep Dive
CVE-2026-1996 Certain HP OfficeJet Pro Printers – Denial of Service HP IncHP OfficeJet Pro 8710 All-in-One Printer series--2026-02-10 17:34:18 Deep Dive
CVE-2026-24319 Information Disclosure Vulnerability in SAP Business One (B1 Client Memory Dump Files) SAP_SESAP Business One (B1 Client Memory Dump Files) Medium 5.8 2026-02-10 03:03:34 Deep Dive
CVE-2026-23572 Improper Access Control in TeamViewer clients TeamViewerRemote High 7.2 2026-02-05 11:51:20 Deep Dive
CVE-2026-1294 All In One Image Viewer Block <= 1.0.2 - Unauthenticated Server-Side Request Forgery via image-proxy Endpoint bpluginsAll In One Image Viewer Block – Gutenberg block to create image viewer with hyperlink High 7.2 2026-02-05 09:13:46 Deep Dive
CVE-2026-24998 WordPress Hustle plugin <= 7.8.9.2 - Sensitive Data Exposure vulnerability WPMU DEV - Your All-in-One WordPress PlatformHustle--2026-02-03 14:08:38 Deep Dive
CVE-2026-1600 Bdtask Bhojon All-In-One Restaurant Management System Add-to-Cart Submission Endpoint addtocart logic error BdtaskBhojon All-In-One Restaurant Management System Medium 4.3 2026-01-29 18:02:06 Deep Dive
CVE-2026-1599 Bdtask Bhojon All-In-One Restaurant Management System Checkout placeorder logic error BdtaskBhojon All-In-One Restaurant Management System Medium 4.3 2026-01-29 17:32:06 Deep Dive