| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-20435 | Cisco AsyncOS 安全漏洞 | Cisco | Cisco Secure Web Appliance | High | 8.8 | 2024-07-17 16:28:00 | Deep Dive |
| CVE-2024-6579 | Web and WooCommerce Addons for WPBakery Builder <= 1.4.5 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Modification | genetechproducts | Web and WooCommerce Addons for WPBakery Builder | Medium | 4.3 | 2024-07-16 09:32:12 | Deep Dive |
| CVE-2024-39912 | Enumeration of valid usernames in web-auth/webauthn-lib | web-auth | webauthn-framework | Medium | 5.3 | 2024-07-15 19:38:05 | Deep Dive |
| CVE-2024-6398 | Trellix Secure Web Gateway 信息泄露漏洞 | Skyhigh | Secure Web Gateway | Medium | 4.3 | 2024-07-15 08:52:25 | Deep Dive |
| CVE-2024-38514 | NextChat Server-Side Request Forgery (SSRF) | ChatGPTNextWeb | ChatGPT-Next-Web | High | 7.4 | 2024-06-28 18:11:03 | Deep Dive |
| CVE-2024-22168 | Cross-Site Scripting (XSS) vulnerability on Western Digital My Cloud and SanDisk ibi Web Apps | Western Digital | My Cloud Home web app | - | - | 2024-06-24 22:54:17 | Deep Dive |
| CVE-2024-3552 | Web Directory Free < 1.7.0 - Unauthenticated SQL Injection | Unknown | Web Directory Free | - | - | 2024-06-13 06:00:03 | Deep Dive |
| CVE-2024-3468 | Deserialization of Untrusted Data in AVEVA PI Web API | AVEVA | PI Web API | - | - | 2024-06-12 21:04:28 | Deep Dive |
| CVE-2024-36359 | Trend Micro Micro InterScan Web Security Virtual Appliance 安全漏洞 | Trend Micro, Inc. | Trend Micro InterScan Web Security Virtual Appliance | Medium | 5.4 | 2024-06-10 21:22:00 | Deep Dive |
| CVE-2024-35693 | WordPress 12 Step Meeting List plugin <= 3.14.33 - Cross Site Scripting (XSS) vulnerability | AA Web Servant | 12 Step Meeting List | High | 7.1 | 2024-06-08 14:28:53 | Deep Dive |
| CVE-2024-35710 | WordPress Podlove Web Player plugin <= 5.7.3 - Sensitive Data Exposure vulnerability | Podlove | Podlove Web Player | Medium | 5.3 | 2024-06-08 14:01:55 | Deep Dive |
| CVE-2024-5434 | Weak Encoding for Password vulnerability in Campbell Scientific CSI Web Server and RTMC | Campbell Scientific | CSI Web Server and RTMC | - | - | 2024-05-28 18:43:07 | Deep Dive |
| CVE-2024-5433 | Path Traversal in Campbell Scientific CSI Web Server and RTMC | Campbell Scientific | CSI Web Server and RTMC | - | - | 2024-05-28 18:39:48 | Deep Dive |
| CVE-2024-5240 | Campcodes Complete Web-Based School Management System unread_msg.php sql injection | Campcodes | Complete Web-Based School Management System | Medium | 6.3 | 2024-05-23 06:31:04 | Deep Dive |
| CVE-2024-5239 | Campcodes Complete Web-Based School Management System timetable_update_form.php sql injection | Campcodes | Complete Web-Based School Management System | Medium | 6.3 | 2024-05-23 06:00:07 | Deep Dive |
| CVE-2024-5238 | Campcodes Complete Web-Based School Management System timetable_insert_form.php sql injection | Campcodes | Complete Web-Based School Management System | Medium | 6.3 | 2024-05-23 05:31:05 | Deep Dive |
| CVE-2024-5237 | Campcodes Complete Web-Based School Management System timetable_grade_wise.php sql injection | Campcodes | Complete Web-Based School Management System | Medium | 6.3 | 2024-05-23 05:31:04 | Deep Dive |
| CVE-2024-5236 | Campcodes Complete Web-Based School Management System teacher_salary_invoice1.php sql injection | Campcodes | Complete Web-Based School Management System | Medium | 6.3 | 2024-05-23 05:00:07 | Deep Dive |
| CVE-2024-5235 | Campcodes Complete Web-Based School Management System teacher_salary_invoice.php sql injection | Campcodes | Complete Web-Based School Management System | Medium | 6.3 | 2024-05-23 05:00:05 | Deep Dive |
| CVE-2024-5234 | Campcodes Complete Web-Based School Management System teacher_salary_history1.php sql injection | Campcodes | Complete Web-Based School Management System | Medium | 6.3 | 2024-05-23 04:31:05 | Deep Dive |