| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-15545 | Insufficient Backup File Upload Input Validation on TP-Link Archer RE605X | TP-Link Systems Inc. | Archer RE605X | - | - | 2026-01-29 17:31:10 | Deep Dive |
| CVE-2025-7714 | Time Based SQLi in Global Medya's PHP CMS | Global Interactive Design Media Software Inc. | Content Management System (CMS) | High | 7.5 | 2026-01-29 14:44:12 | Deep Dive |
| CVE-2025-7713 | Reflected XSS in Global Medya's PHP CMS | Global Interactive Design Media Software Inc. | Content Management System (CMS) | High | 7.5 | 2026-01-29 14:38:41 | Deep Dive |
| CVE-2020-37013 | Audio Playback Recorder 3.2.2 - Local Buffer Overflow (SEH) | Tucows Inc. | Audio Playback Recorder | High | 8.4 | 2026-01-29 14:28:32 | Deep Dive |
| CVE-2025-55704 | Brother Industries Brother MFPs 安全漏洞 | Brother Industries, Ltd. | Multiple MFPs | Medium | 5.3 | 2026-01-29 02:41:31 | Deep Dive |
| CVE-2025-53869 | Brother Industries Brother MFPs 信任管理问题漏洞 | Brother Industries, Ltd. | Multiple MFPs | Low | 3.7 | 2026-01-29 02:40:57 | Deep Dive |
| CVE-2020-36965 | docPrint Pro 8.0 - 'Add URL' Buffer Overflow (SEH Egghunter) | VeryPDF.com, Inc. | docPrint Pro | High | 8.4 | 2026-01-28 17:35:09 | Deep Dive |
| CVE-2025-12810 | Failure in Password Rotation and Check-in Mechanism in Secret Server Allows Reuse of Credentials | Delinea Inc. | Secret Server On-Prem | - | - | 2026-01-27 19:46:05 | Deep Dive |
| CVE-2026-1315 | Unauthenticated Denial of Service via Firmware Update Endpoint on TP-Link Tapo C220 & C520WS | TP-Link Systems Inc. | Tapo C220 v1 | - | - | 2026-01-27 17:53:29 | Deep Dive |
| CVE-2026-0919 | Unauthenticated Denial of Service via Oversized URL in HTTP Parser on TP-Link Tapo C220 & C520WS | TP-Link Systems Inc. | Tapo C220 v1 | - | - | 2026-01-27 17:52:39 | Deep Dive |
| CVE-2026-0918 | Null Pointer Dereference in Tapo SmartCam HTTP Service on TP-Link Tapo C220 & C520WS | TP-Link Systems Inc. | Tapo C220 v1 | - | - | 2026-01-27 17:52:04 | Deep Dive |
| CVE-2020-36950 | Laravel Nova 3.7.0 - 'range' DoS | Laravel Holdings Inc. | Laravel Nova | Medium | 6.5 | 2026-01-27 15:23:51 | Deep Dive |
| CVE-2025-9522 | Blind Server-Side Request Forgery (SSRF) in Omada Controller | TP-Link Systems Inc. | Omada Controller | - | - | 2026-01-26 19:36:00 | Deep Dive |
| CVE-2025-9521 | Password Confirmation Bypass in Omada Controller | TP-Link Systems Inc. | Omada Controller | - | - | 2026-01-26 19:35:27 | Deep Dive |
| CVE-2025-9520 | IDOR Leading to Owner Account Hijacking in Omada Controller | TP-Link Systems Inc. | Omada Controller | - | - | 2026-01-26 19:34:45 | Deep Dive |
| CVE-2025-14756 | Authenticated Command Injection Vulnerability in Archer MR600 | TP-Link Systems Inc. | Archer MR600 v5.0 | - | - | 2026-01-26 18:17:09 | Deep Dive |
| CVE-2025-71178 | Crucial Storage Executive < 11.08.082025.00 Installer DLL Preloading LPE | Micron Technology, Inc. | Crucial Storage Executive | - | - | 2026-01-26 17:55:02 | Deep Dive |
| CVE-2025-12836 | VK Google Job Posting Manager <= 1.2.23 - Authenticated (Author+) Stored Cross-Site Scripting via Job Description Field | vektor-inc | VK Google Job Posting Manager | Medium | 6.4 | 2026-01-24 07:26:42 | Deep Dive |
| CVE-2021-47903 | LiteSpeed Web Server Enterprise 5.4.11 - Command Injection | LiteSpeed Technologies Inc | LiteSpeed Web Server Enterprise | High | 8.8 | 2026-01-23 16:47:43 | Deep Dive |
| CVE-2021-47898 | Epson USB Display 1.6.0.0 Unquoted Service Path Vulnerability | Epson America, Inc. | Epson USB Display | High | 7.8 | 2026-01-23 16:47:41 | Deep Dive |