Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 24

Clear Filters
Found 4860 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-11862 Verve Asset Manager Access Control Vulnerability Rockwell AutomationVerve Asset Manager 超危 -2025-11-11 13:43:11 Deep Dive
CVE-2025-9223 Command Injection ZohocorpManageEngine Applications Manager High 8.8 2025-11-11 13:13:25 Deep Dive
CVE-2025-12538 Fleet Manager <= 2.5.1 - Authenticated (Editor+) Stored Cross-Site Scripting iworksFleet Manager Medium 4.4 2025-11-11 03:30:37 Deep Dive
CVE-2025-42887 Code Injection vulnerability in SAP Solution Manager SAP_SESAP Solution Manager Critical 9.9 2025-11-11 00:14:46 Deep Dive
CVE-2025-46430 Dell Display and Peripheral Manager 安全漏洞 DellDisplay and Peripheral Manager High 7.3 2025-11-10 15:59:36 Deep Dive
CVE-2025-7663 Ovatheme Events Manager <= 1.8.6 - Missing Authorization ovathemeOvatheme Events Manager Medium 6.5 2025-11-08 03:27:48 Deep Dive
CVE-2025-11972 Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.0 - Authenticated (Editor+) SQL Injection stevejburgeTag, Category, and Taxonomy Manager – AI Autotagger with OpenAI Medium 4.9 2025-11-08 03:27:48 Deep Dive
CVE-2025-12177 Download Manager <= 3.3.30 - Unauthenticated Cron Trigger due to Hardcoded Cron Key codename065Download Manager Medium 5.3 2025-11-08 03:27:46 Deep Dive
CVE-2025-64180 Manager-io/Manager: Complete Bypass of SSRF Protection via Time-of-Check Time-of-Use (TOCTOU) Manager-ioManager Critical 10.0 2025-11-07 02:58:45 Deep Dive
CVE-2025-60245 WordPress WP User Manager plugin <= 2.9.12 - PHP Object Injection vulnerability WP User ManagerWP User Manager Critical 9.8 2025-11-06 15:55:20 Deep Dive
CVE-2025-58972 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.10.4 - Path Traversal vulnerability Dmitry V. (CEO of "UKR Solution")Barcode Scanner with Inventory & Order Manager High 7.2 2025-11-06 15:54:30 Deep Dive
CVE-2025-49904 WordPress Booking and Rental Manager plugin <= 2.5.3 - Cross Site Scripting (XSS) vulnerability magepeopleteamBooking and Rental Manager High 7.1 2025-11-06 15:53:55 Deep Dive
CVE-2025-10853 Reflected Cross-Site Scripting (XSS) in Management Console of Multiple WSO2 Products Due to Improper Output Encoding WSO2WSO2 Open Banking IAM Medium 5.2 2025-11-05 19:21:33 Deep Dive
CVE-2025-5770 Reflected Cross-Site Scripting (XSS) in Authentication Endpoints of Multiple WSO2 Products WSO2WSO2 Identity Server Medium 6.1 2025-11-05 19:02:48 Deep Dive
CVE-2025-11093 Arbitrary Code Execution with higher privileged users in Multiple WSO2 Products via Script Mediator Engines (GraalJS and NashornJS) WSO2WSO2 Micro Integrator High 8.4 2025-11-05 18:31:18 Deep Dive
CVE-2025-10907 Authenticated Arbitrary File Upload in Multiple WSO2 Products via SOAP Admin Services Leading to Remote Code Execution WSO2WSO2 API Manager High 8.4 2025-11-05 18:03:50 Deep Dive
CVE-2025-10713 XML External Entity (XXE) Vulnerability in Multiple WSO2 Products Due to Improper XML Parser Configuration WSO2WSO2 Enterprise Integrator Medium 6.5 2025-11-05 17:18:25 Deep Dive
CVE-2025-3125 Authenticated Arbitrary File Upload in Multiple WSO2 Products via CarbonAppUploader Admin Service Leading to Remote Code Execution WSO2WSO2 Identity Server Medium 6.7 2025-11-05 14:49:45 Deep Dive
CVE-2025-11745 Ad Inserter <= 2.8.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Field spacetimeAd Inserter – Ad Manager & AdSense Ads Medium 6.4 2025-11-05 11:24:41 Deep Dive
CVE-2025-12139 File Manager for Google Drive – Integrate Google Drive with WordPress <= 1.5.3 - Unauthenticated Sensitive Information Exposure princeahmedFile Manager for Google Drive – Integrate Google Drive High 7.5 2025-11-05 06:35:01 Deep Dive