| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-32971 | XWiki Solr script service doesn't take dropped programming right into account | xwiki | xwiki-platform | Low | 3.8 | 2025-04-30 14:54:55 | Deep Dive |
| CVE-2025-32970 | org.xwiki.platform:xwiki-platform-wysiwyg-api Open Redirect vulnerability | xwiki | xwiki-platform | Medium | 6.1 | 2025-04-30 14:54:52 | Deep Dive |
| CVE-2025-46689 | Ververica Platform 安全漏洞 | Ververica | Ververica Platform | Medium | 5.4 | 2025-04-27 00:00:00 | Deep Dive |
| CVE-2025-46690 | Ververica Platform 安全漏洞 | Ververica | Ververica Platform | Medium | 5.0 | 2025-04-27 00:00:00 | Deep Dive |
| CVE-2025-32969 | org.xwiki.platform:xwiki-platform-rest-server allows SQL injection in query endpoint of REST API | xwiki | xwiki-platform | 超危 | - | 2025-04-23 15:33:04 | Deep Dive |
| CVE-2025-32968 | org.xwiki.platform:xwiki-platform-oldcore allows SQL injection in short form select requests through the script query API | xwiki | xwiki-platform | 高危 | - | 2025-04-23 15:27:27 | Deep Dive |
| CVE-2025-32961 | CUBA JPA Web API Vulnerable to Cross-Site Scripting (XSS) in the /download Endpoint | cuba-platform | jpawebapi | Medium | 6.4 | 2025-04-22 17:46:01 | Deep Dive |
| CVE-2025-32960 | CUBA Generic REST API Vulnerable to Cross-Site Scripting (XSS) in the /files Endpoint | cuba-platform | restapi | Medium | 6.4 | 2025-04-22 17:45:54 | Deep Dive |
| CVE-2025-32959 | CUBA Vulnerable to Denial of Service (DoS) in the File Storage | cuba-platform | cuba | Medium | 6.5 | 2025-04-22 17:45:00 | Deep Dive |
| CVE-2025-32783 | XWiki allows unregistered users to see "public" messages from a closed wiki via notifications from a different wiki | xwiki | xwiki-platform | Medium | 4.7 | 2025-04-16 21:38:06 | Deep Dive |
| CVE-2025-21576 | Oracle Commerce 安全漏洞 | Oracle Corporation | Oracle Commerce Platform | Medium | 5.4 | 2025-04-15 20:30:54 | Deep Dive |
| CVE-2024-42193 | HCL BigFix Web Reports is susceptible to a Man-In-The-Middle (MITM) attack | HCL Software | HCL BigFix Platform | - | - | 2025-04-15 18:16:01 | Deep Dive |
| CVE-2024-42189 | HCL BigFix Web Reports might be subject to a Denial of Service (DoS) attack | HCL Software | HCL BigFix Platform | - | - | 2025-04-15 18:07:41 | Deep Dive |
| CVE-2024-42200 | HCL BigFix Web Reports is potentially susceptible to a Stored Cross-Site Scripting (XSS) attack | HCL Software | HCL BigFix Platform | - | - | 2025-04-15 18:00:18 | Deep Dive |
| CVE-2025-3576 | Krb5: kerberos rc4-hmac-md5 checksum vulnerability enabling message spoofing via md5 collisions | - | - | Medium | 5.9 | 2025-04-15 05:55:27 | Deep Dive |
| CVE-2025-32987 | Arctera eDiscovery Platform 安全漏洞 | Arctera | eDiscovery Platform | Medium | 6.0 | 2025-04-15 00:00:00 | Deep Dive |
| CVE-2025-3102 | SureTriggers <= 1.0.78 - Authorization Bypass due to Missing Empty Value Check to Unauthenticated Administrative User Creation | brainstormforce | OttoKit: All-in-One Automation Platform | High | 8.1 | 2025-04-10 04:22:06 | Deep Dive |
| CVE-2025-29989 | Dell Client Platform BIOS 安全漏洞 | Dell | Dell Client Platform BIOS | Low | 3.1 | 2025-04-10 01:55:56 | Deep Dive |
| CVE-2025-32374 | Possible Denial of Service (DoS) in DNN.PLATFORM registration | dnnsoftware | Dnn.Platform | Medium | 5.9 | 2025-04-09 15:14:52 | Deep Dive |
| CVE-2025-32373 | DNN allows a registered user to enumerate and access files they should not have access to | dnnsoftware | Dnn.Platform | Medium | 6.5 | 2025-04-09 15:14:44 | Deep Dive |