| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-1544 | dingfanzu CMS loadShopInfo.php sql injection | dingfanzu | CMS | Medium | 6.3 | 2025-02-21 16:00:11 | Deep Dive |
| CVE-2025-1543 | iteachyou Dreamer CMS ueditor-1.4.3.3 path traversal | iteachyou | Dreamer CMS | Medium | 4.3 | 2025-02-21 16:00:09 | Deep Dive |
| CVE-2025-22207 | [20250201] - Core - SQL injection vulnerability in Scheduled Tasks component | Joomla! Project | Joomla! CMS | 中危 | - | 2025-02-18 16:03:30 | Deep Dive |
| CVE-2025-1113 | taisan tarzan-cms Add Theme admin#themes upload deserialization | taisan | tarzan-cms | Medium | 6.3 | 2025-02-07 21:31:09 | Deep Dive |
| CVE-2025-24012 | Umbraco Backoffice Components Have XSS/HTML Injection Vulnerability | umbraco | Umbraco-CMS | Medium | 4.6 | 2025-01-21 15:32:44 | Deep Dive |
| CVE-2025-24011 | Umbraco CMS Vulnerable to User Enumeration Feasible Based On Management API Timing and Response Codes | umbraco | Umbraco-CMS | Medium | 5.3 | 2025-01-21 15:27:30 | Deep Dive |
| CVE-2025-23209 | Potential RCE with a compromised security key in craft/cms | craftcms | cms | High | 8.0 | 2025-01-18 00:32:55 | Deep Dive |
| CVE-2025-0491 | Fanli2012 native-php-cms cat_dodel.php sql injection | Fanli2012 | native-php-cms | Medium | 6.3 | 2025-01-15 22:00:15 | Deep Dive |
| CVE-2025-0490 | Fanli2012 native-php-cms article_dodel.php sql injection | Fanli2012 | native-php-cms | Medium | 6.3 | 2025-01-15 21:31:07 | Deep Dive |
| CVE-2025-0489 | Fanli2012 native-php-cms friendlink_dodel.php sql injection | Fanli2012 | native-php-cms | Medium | 6.3 | 2025-01-15 21:31:06 | Deep Dive |
| CVE-2025-0488 | Fanli2012 native-php-cms product_list.php sql injection | Fanli2012 | native-php-cms | Medium | 6.3 | 2025-01-15 21:00:18 | Deep Dive |
| CVE-2025-0487 | Fanli2012 native-php-cms cat_edit.php sql injection | Fanli2012 | native-php-cms | Medium | 6.3 | 2025-01-15 20:31:07 | Deep Dive |
| CVE-2025-0486 | Fanli2012 native-php-cms login.php sql injection | Fanli2012 | native-php-cms | High | 7.3 | 2025-01-15 20:31:05 | Deep Dive |
| CVE-2025-0485 | Fanli2012 native-php-cms sysconfig_doedit.php cross site scripting | Fanli2012 | native-php-cms | Low | 3.5 | 2025-01-15 20:00:19 | Deep Dive |
| CVE-2025-0484 | Fanli2012 native-php-cms Backend sysconfig_doedit.php improper authorization | Fanli2012 | native-php-cms | High | 7.3 | 2025-01-15 20:00:17 | Deep Dive |
| CVE-2025-0483 | Fanli2012 native-php-cms jump.php cross site scripting | Fanli2012 | native-php-cms | Low | 3.5 | 2025-01-15 19:31:06 | Deep Dive |
| CVE-2025-0482 | Fanli2012 native-php-cms user_recoverpwd.php default credentials | Fanli2012 | native-php-cms | High | 7.3 | 2025-01-15 19:31:05 | Deep Dive |
| CVE-2024-13209 | Redaxo CMS Structure Management Page index.php cross site scripting | Redaxo | CMS | Low | 2.4 | 2025-01-09 03:00:15 | Deep Dive |
| CVE-2024-40749 | [20250103] - Core - Read ACL violation in multiple core views | Joomla! Project | Joomla! CMS | 高危 | - | 2025-01-07 16:22:13 | Deep Dive |
| CVE-2024-40747 | [20250101] - Core - XSS vectors in module chromes | Joomla! Project | Joomla! CMS | 中危 | - | 2025-01-07 16:22:03 | Deep Dive |