| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-13630 | Google Chrome 安全漏洞 | Chrome | - | - | 2025-12-02 19:00:10 | Deep Dive | |
| CVE-2025-13007 | WP Social Ninja – Embed Social Feeds, Customer Reviews, Chat Widgets (Google Reviews, YouTube Feed, Photo Feeds, and More) <= 3.20.3 - Unauthenticated Stored Cross-Site Scripting via External Content Import | adreastrian | WP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets | Medium | 6.1 | 2025-12-02 06:40:24 | Deep Dive |
| CVE-2025-12666 | Google Drive upload and download link <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | oscaruh | Google Drive upload and download link | Medium | 6.4 | 2025-11-27 02:26:13 | Deep Dive |
| CVE-2025-12742 | Remote Code Execution in Looker via Teradata JDBC Driver | Google Cloud | Looker | - | - | 2025-11-25 05:38:48 | Deep Dive |
| CVE-2025-12741 | Arbitrary File Write in Denodo dialect of Looker allows Remote Code Execution | Google Cloud | Looker | - | - | 2025-11-24 11:35:34 | Deep Dive |
| CVE-2025-12740 | Remote Command Execution in Looker via IBM DB2 JDBC drive | Google Cloud | Looker | - | - | 2025-11-24 11:30:32 | Deep Dive |
| CVE-2025-12739 | Cross-Site Scripting (XSS) in Looker's Extension Loader leading to Admin Account Compromise | Google Cloud | Looker | - | - | 2025-11-24 09:11:38 | Deep Dive |
| CVE-2025-66063 | WordPress WP Google Review Slider plugin <= 17.4 - Broken Access Control vulnerability | jgwhite33 | WP Google Review Slider | Medium | 5.4 | 2025-11-21 12:29:55 | Deep Dive |
| CVE-2025-11808 | Shortcode for Google Street View <= 0.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | antiochinteractive | Shortcode for Google Street View | Medium | 6.4 | 2025-11-21 08:28:14 | Deep Dive |
| CVE-2025-13437 | Arbitrary node_modules Directory Deletion in Google zx | zx | 高危 | - | 2025-11-20 16:25:17 | Deep Dive | |
| CVE-2025-13425 | Denial of Service in OSV-SCALIBR | OSV-SCALIBR | 低危 | - | 2025-11-20 15:30:31 | Deep Dive | |
| CVE-2025-12414 | Looker account compromise via punycode homograph attack | Google Cloud | Looker | 超危 | - | 2025-11-20 10:32:52 | Deep Dive |
| CVE-2025-12743 | SQL Injection in Looker Project Generation Endpoint Allows Access to Internal MySQL Database | Google Cloud | Looker | - | - | 2025-11-19 16:41:31 | Deep Dive |
| CVE-2025-10703 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:47:08 | Deep Dive |
| CVE-2025-10702 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:46:27 | Deep Dive |
| CVE-2025-12472 | Remote Code Execution in Looker due to Improperly Validated Directory Deletion | Google Cloud | Looker | - | - | 2025-11-19 10:27:57 | Deep Dive |
| CVE-2025-12545 | Pixel Manager for WooCommerce – Track Conversions and Analytics, Google Ads, TikTok and more <= 1.49.2 - Unauthenticated Information Exposure | alekv | Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic Remarketing | Medium | 5.3 | 2025-11-18 13:54:51 | Deep Dive |
| CVE-2025-48593 | Google Android 安全漏洞 | Android | - | - | 2025-11-18 04:51:58 | Deep Dive | |
| CVE-2025-13230 | Google Chrome 安全漏洞 | Chrome | - | - | 2025-11-17 23:19:54 | Deep Dive | |
| CVE-2025-13227 | Google Chrome 安全漏洞 | Chrome | - | - | 2025-11-17 23:19:53 | Deep Dive |