| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-32656 | WordPress Testimonial Slider and Showcase Pro plugin <= 2.3.15 - Local File Inclusion vulnerability | RadiusTheme | Testimonial Slider And Showcase Pro | High | 8.1 | 2025-04-11 08:43:02 | Deep Dive |
| CVE-2025-32107 | TP-LINK Deco BE65 Pro 操作系统命令注入漏洞 | TP-Link Corporation Limited | Deco BE65 Pro | - | - | 2025-04-11 08:17:59 | Deep Dive |
| CVE-2025-32275 | WordPress Survey Maker plugin <= 5.1.6.3 - Bypass vulnerability | Ays Pro | Survey Maker | - | - | 2025-04-10 08:09:48 | Deep Dive |
| CVE-2025-26902 | WordPress Brizy Pro plugin <= 2.8.0 - Cross Site Request Forgery (CSRF) vulnerability | Brizy | Brizy Pro | Medium | 4.3 | 2025-04-09 19:30:16 | Deep Dive |
| CVE-2025-26901 | WordPress Brizy Pro plugin <= 2.8.0 - Broken Access Control vulnerability | Brizy | Brizy Pro | Medium | 4.3 | 2025-04-09 19:28:10 | Deep Dive |
| CVE-2025-32659 | WordPress FraudLabs Pro for WooCommerce plugin <= 2.22.8 - CSRF to Stored XSS vulnerability | fraudlabspro | FraudLabs Pro for WooCommerce | High | 7.1 | 2025-04-09 16:09:20 | Deep Dive |
| CVE-2025-27196 | Premiere Pro | Heap-based Buffer Overflow (CWE-122) | Adobe | Premiere Pro | High | 7.8 | 2025-04-08 17:47:42 | Deep Dive |
| CVE-2025-32133 | WordPress Secure Copy Content Protection and Content Locking plugin <= 4.5.5 - Cross Site Scripting (XSS) vulnerability | Ays Pro | Secure Copy Content Protection and Content Locking | Medium | 5.9 | 2025-04-04 15:58:29 | Deep Dive |
| CVE-2025-30905 | WordPress Secure Copy Content Protection and Content Locking plugin <= 4.4.3 - Cross Site Scripting (XSS) vulnerability | Ays Pro | Secure Copy Content Protection and Content Locking | High | 7.1 | 2025-04-01 20:58:08 | Deep Dive |
| CVE-2025-30774 | WordPress Quiz Maker plugin <= 6.6.8.7 - SQL Injection vulnerability | Ays Pro | Quiz Maker | High | 8.2 | 2025-04-01 05:31:36 | Deep Dive |
| CVE-2025-30904 | WordPress Chartify plugin <= 3.1.7 - Cross Site Scripting (XSS) vulnerability | Ays Pro | Chartify | Medium | 5.9 | 2025-03-27 10:55:52 | Deep Dive |
| CVE-2025-26546 | WordPress Cookies Pro plugin <= 1.0 - CSRF to Stored XSS vulnerability | Pixelpro | Cookies Pro | High | 7.1 | 2025-03-26 14:24:19 | Deep Dive |
| CVE-2025-2744 | zhijiantianya ruoyi-vue-pro Material Upload Interface upload-news-image path traversal | zhijiantianya | ruoyi-vue-pro | Medium | 5.4 | 2025-03-25 07:00:12 | Deep Dive |
| CVE-2025-2743 | zhijiantianya ruoyi-vue-pro Material Upload Interface upload-temporary path traversal | zhijiantianya | ruoyi-vue-pro | Medium | 4.3 | 2025-03-25 07:00:10 | Deep Dive |
| CVE-2025-2742 | zhijiantianya ruoyi-vue-pro Material Upload Interface upload-permanent path traversal | zhijiantianya | ruoyi-vue-pro | Medium | 5.4 | 2025-03-25 06:31:07 | Deep Dive |
| CVE-2025-2732 | H3C Magic BE18000 HTTP POST Request getWifiNeighbour command injection | H3C | Magic NX15 | High | 8.0 | 2025-03-25 04:00:08 | Deep Dive |
| CVE-2025-2731 | H3C Magic BE18000 HTTP POST Request getDualbandSync command injection | H3C | Magic NX15 | High | 8.0 | 2025-03-25 03:31:04 | Deep Dive |
| CVE-2025-2730 | H3C Magic BE18000 HTTP POST Request getssidname command injection | H3C | Magic NX15 | High | 8.0 | 2025-03-25 03:00:12 | Deep Dive |
| CVE-2025-2729 | H3C Magic BE18000 HTTP POST Request networkSetup command injection | H3C | Magic NX15 | High | 8.0 | 2025-03-25 03:00:09 | Deep Dive |
| CVE-2025-2728 | H3C Magic NX30 Pro/Magic NX400 getNetworkConf command injection | H3C | Magic NX30 Pro | High | 8.0 | 2025-03-25 02:31:05 | Deep Dive |