| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-47913 | PHP Melody 3.0 Persistent Cross-Site Scripting via Video Editor | PHPSUGAR | PHP Melody | Medium | 6.4 | 2026-02-01 12:15:48 | Deep Dive |
| CVE-2021-47912 | PHP Melody 3.0 Non-Persistent Cross-Site Scripting via Multiple Parameters | PHPSUGAR | PHP Melody | Medium | 6.4 | 2026-02-01 12:15:48 | Deep Dive |
| CVE-2020-37035 | e-learning Php Script 0.1.0 - 'search' SQL Injection | amitkolloldey | e-learning PHP Script | High | 8.2 | 2026-01-30 22:07:13 | Deep Dive |
| CVE-2020-36996 | PHPFusion 9.03.50 - Persistent Cross-Site Scripting | Php-Fusion | PHPFusion | Medium | 6.4 | 2026-01-30 16:16:38 | Deep Dive |
| CVE-2025-15495 | BiggiDroid Simple PHP CMS editsite.php unrestricted upload | BiggiDroid | Simple PHP CMS | Medium | 4.7 | 2026-01-09 17:02:09 | Deep Dive |
| CVE-2019-25280 | Yahei-PHP Prober 0.4.7 Remote HTML Injection via Speed Parameter | Yahei.Net | Yahei-PHP Prober | Medium | 6.1 | 2026-01-07 23:11:08 | Deep Dive |
| CVE-2025-15223 | Philipinho Simple-PHP-Blog login.php cross site scripting | Philipinho | Simple-PHP-Blog | Medium | 4.3 | 2025-12-31 02:32:10 | Deep Dive |
| CVE-2025-15263 | BiggiDroid Simple PHP CMS Admin Login login.php sql injection | BiggiDroid | Simple PHP CMS | High | 7.3 | 2025-12-30 18:32:09 | Deep Dive |
| CVE-2025-15262 | BiggiDroid Simple PHP CMS Site Logo edit.php unrestricted upload | BiggiDroid | Simple PHP CMS | Medium | 4.7 | 2025-12-30 18:02:09 | Deep Dive |
| CVE-2025-15169 | BiggiDroid Simple PHP CMS editsite.php sql injection | BiggiDroid | Simple PHP CMS | Medium | 4.7 | 2025-12-29 03:02:09 | Deep Dive |
| CVE-2025-14177 | Information Leak of Memory in getimagesize | PHP Group | PHP | 低危 | - | 2025-12-27 19:33:24 | Deep Dive |
| CVE-2025-14178 | Heap buffer overflow in array_merge() | PHP Group | PHP | Medium | 6.5 | 2025-12-27 19:27:42 | Deep Dive |
| CVE-2025-14180 | NULL Pointer Dereference in PDO quoting | PHP Group | PHP | 中危 | - | 2025-12-27 19:21:21 | Deep Dive |
| CVE-2025-15014 | loganhong php loganSite Article article_detail.php sql injection | loganhong | php loganSite | Medium | 6.3 | 2025-12-22 05:02:06 | Deep Dive |
| CVE-2023-53928 | PHPFusion 9.10.30 Stored Cross-Site Scripting via File Manager Upload | Php-fusion | PHPFusion | Medium | 5.4 | 2025-12-17 22:44:57 | Deep Dive |
| CVE-2025-68129 | Auth0-PHP SDK has Improper Audience Validation | auth0 | auth0-PHP | Medium | 6.8 | 2025-12-17 22:07:36 | Deep Dive |
| CVE-2025-14761 | Amazon AWS SDK for PHP 安全漏洞 | AWS | AWS SDK for PHP | Medium | 5.3 | 2025-12-17 20:13:55 | Deep Dive |
| CVE-2025-14227 | Philipinho Simple-PHP-Blog edit.php sql injection | Philipinho | Simple-PHP-Blog | Medium | 6.3 | 2025-12-08 10:02:07 | Deep Dive |
| CVE-2025-14201 | alokjaiswal Hotel-Management-services-using-MYSQL-and-php dishsub.php cross site scripting | alokjaiswal | Hotel-Management-services-using-MYSQL-and-php | Low | 2.4 | 2025-12-07 18:02:06 | Deep Dive |
| CVE-2025-14200 | alokjaiswal Hotel-Management-services-using-MYSQL-and-php Request Pending usersub.php cross site scripting | alokjaiswal | Hotel-Management-services-using-MYSQL-and-php | Low | 3.5 | 2025-12-07 17:32:07 | Deep Dive |