| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-21558 | Oracle Construction and Engineering Suite 安全漏洞 | Oracle Corporation | Primavera P6 Enterprise Project Portfolio Management | Medium | 5.4 | 2025-01-21 20:53:19 | Deep Dive |
| CVE-2025-21528 | Oracle Construction and Engineering Suite 安全漏洞 | Oracle Corporation | Primavera P6 Enterprise Project Portfolio Management | Medium | 4.3 | 2025-01-21 20:53:07 | Deep Dive |
| CVE-2025-21526 | Oracle Construction and Engineering Suite 安全漏洞 | Oracle Corporation | Primavera P6 Enterprise Project Portfolio Management | Medium | 5.4 | 2025-01-21 20:53:07 | Deep Dive |
| CVE-2025-21506 | Oracle E-Business Suite 安全漏洞 | Oracle Corporation | Oracle Project Foundation | High | 8.1 | 2025-01-21 20:52:58 | Deep Dive |
| CVE-2024-12104 | Visual Website Collaboration, Feedback & Project Management – Atarim <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File Deletion | wpfeedback | Atarim – Visual Feedback, Review & AI Collaboration | Medium | 5.3 | 2025-01-21 09:21:10 | Deep Dive |
| CVE-2025-23208 | IdP group membership revocation ignored in zot | project-zot | zot | High | 7.3 | 2025-01-17 22:24:09 | Deep Dive |
| CVE-2025-23497 | WordPress Simple Project Manager plugin <= 1.2.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerability | albdesign | Simple Project Manager | High | 7.1 | 2025-01-16 20:06:02 | Deep Dive |
| CVE-2025-0343 | SwiftASN1 安全漏洞 | Swift Project | Swift ASN1 | 高危 | - | 2025-01-15 00:48:08 | Deep Dive |
| CVE-2025-0336 | Codezips Project Management System teacher.php sql injection | Codezips | Project Management System | Medium | 6.3 | 2025-01-09 06:31:05 | Deep Dive |
| CVE-2024-40749 | [20250103] - Core - Read ACL violation in multiple core views | Joomla! Project | Joomla! CMS | 高危 | - | 2025-01-07 16:22:13 | Deep Dive |
| CVE-2024-40747 | [20250101] - Core - XSS vectors in module chromes | Joomla! Project | Joomla! CMS | 中危 | - | 2025-01-07 16:22:03 | Deep Dive |
| CVE-2024-40748 | [20250102] - Core - XSS vector in the id attribute of menu lists | Joomla! Project | Joomla! CMS | 高危 | - | 2025-01-07 16:22:01 | Deep Dive |
| CVE-2024-55074 | Grocy 安全漏洞 | Grocy project | Grocy | High | 8.8 | 2025-01-06 00:00:00 | Deep Dive |
| CVE-2024-55075 | Grocy 安全漏洞 | Grocy project | Grocy | Medium | 4.3 | 2025-01-06 00:00:00 | Deep Dive |
| CVE-2024-55076 | Grocy 安全漏洞 | Grocy project | Grocy | High | 8.1 | 2025-01-06 00:00:00 | Deep Dive |
| CVE-2025-0233 | Codezips Project Management System course.php sql injection | Codezips | Project Management System | High | 7.3 | 2025-01-05 22:31:07 | Deep Dive |
| CVE-2025-0213 | Campcodes Project Management System update_forms.php unrestricted upload | Campcodes | Project Management System | Medium | 6.3 | 2025-01-04 16:31:06 | Deep Dive |
| CVE-2024-12195 | WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts <= 2.6.16 - Authenticated (Subscriber+) SQL Injection | wedevs | Project Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker | Medium | 6.5 | 2025-01-04 11:24:20 | Deep Dive |
| CVE-2024-11930 | Taskbuilder – WordPress Project & Task Management plugin <= 3.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via wppm_tasks Shortcode | taskbuilder | Taskbuilder – Project Management & Task Management Tool With Kanban Board | Medium | 6.4 | 2025-01-04 08:22:52 | Deep Dive |
| CVE-2024-56261 | WordPress Project Showcase plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability | GS Plugins | Project Showcase | Medium | 6.5 | 2025-01-02 12:01:29 | Deep Dive |