| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-2154 | Stored XSS in EchoCCS's Specto CM | Echo Call Center Services Trade and Industry Inc. | Specto CM | Medium | 5.4 | 2025-12-24 14:26:48 | Deep Dive |
| CVE-2025-13183 | Stored XSS in Hotech's Otello | Hotech Software Inc. | Otello | High | 7.3 | 2025-12-23 13:04:37 | Deep Dive |
| CVE-2025-14018 | Unquoted Service Path in NetBT Consultancy's e-Fatura | NetBT Consulting Services Inc. | e-Fatura | High | 7.3 | 2025-12-22 13:46:12 | Deep Dive |
| CVE-2025-14300 | Unauthenticated Access to connectAP API Endpoint on Tapo C100 and C200 | TP-Link Systems Inc. | Tapo C200 V3 | - | - | 2025-12-20 00:43:39 | Deep Dive |
| CVE-2025-14299 | Improper Content-Length Validation in HTTPS Requests on Tapo C200 | TP-Link Systems Inc. | Tapo C200 V3 | - | - | 2025-12-20 00:42:44 | Deep Dive |
| CVE-2025-8065 | Remote Code Execution via Stack-based Buffer Overflow in ONVIF SOAP Parser in TP-Link Tapo C200 and C520WS | TP-Link Systems Inc. | Tapo C200 V3 | - | - | 2025-12-20 00:41:57 | Deep Dive |
| CVE-2025-1928 | Improper Authentication in Restajet's Online Food Delivery System | Restajet Information Technologies Inc. | Online Food Delivery System | Critical | 9.1 | 2025-12-19 12:08:35 | Deep Dive |
| CVE-2025-1927 | CSRF in Restajet's Online Food Delivery System | Restajet Information Technologies Inc. | Online Food Delivery System | High | 7.1 | 2025-12-19 12:01:04 | Deep Dive |
| CVE-2025-1885 | Open Redirect in Restajet's Online Food Delivery System | Restajet Information Technologies Inc. | Online Food Delivery System | Medium | 5.4 | 2025-12-19 11:47:32 | Deep Dive |
| CVE-2025-14847 | Zlib compressed protocol header length confusion may allow memory read | MongoDB Inc. | MongoDB Server | High | 7.5 | 2025-12-19 11:00:22 | Deep Dive |
| CVE-2025-66522 | Foxit pdfonline.foxit.com Stored Cross-Site Scripting in Digital IDs Common Name Field | Foxit Software Inc. | pdfonline.foxit.com | Medium | 6.3 | 2025-12-19 07:34:29 | Deep Dive |
| CVE-2025-66521 | Foxit pdfonline.foxit.com Stored Cross-Site Scripting in Trusted Certificates Feature | Foxit Software Inc. | pdfonline.foxit.com | Medium | 6.3 | 2025-12-19 07:33:02 | Deep Dive |
| CVE-2025-66520 | Foxit pdfonline.foxit.com Stored Cross-Site Scripting in Portfolio SVG Handling | Foxit Software Inc. | pdfonline.foxit.com | Medium | 6.3 | 2025-12-19 07:30:21 | Deep Dive |
| CVE-2025-66519 | Foxit pdfonline.foxit.com Stored Cross-Site Scripting in Layer Import Functionality | Foxit Software Inc. | pdfonline.foxit.com | Medium | 6.3 | 2025-12-19 07:27:55 | Deep Dive |
| CVE-2025-66502 | Foxit pdfonline.foxit.com Stored Cross-Site Scripting in Page Templates Feature | Foxit Software Inc. | pdfonline.foxit.com | Medium | 6.3 | 2025-12-19 07:25:26 | Deep Dive |
| CVE-2025-66501 | Foxit pdfonline.foxit.com Stored Cross-Site Scripting in eSign Predefined Text Feature | Foxit Software Inc. | pdfonline.foxit.com | Medium | 6.3 | 2025-12-19 07:23:29 | Deep Dive |
| CVE-2025-66500 | Foxit webplugins.foxit.com Stored Cross-Site Scripting via postMessage Vulnerability | Foxit Software Inc. | webplugins.foxit.com | Medium | 6.3 | 2025-12-19 07:16:50 | Deep Dive |
| CVE-2025-66499 | Foxit PDF Reader PDF Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability | Foxit Software Inc. | Foxit PDF Reader | High | 7.8 | 2025-12-19 07:11:50 | Deep Dive |
| CVE-2025-66498 | Foxit PDF Reader 3D Annotation Out-of-Bounds Memory Access Vulnerability | Foxit Software Inc. | Foxit PDF Reader | Medium | 5.3 | 2025-12-19 07:11:12 | Deep Dive |
| CVE-2025-66497 | Foxit PDF Reader 3D Annotation Out-of-Bounds Memory Access Vulnerability | Foxit Software Inc. | Foxit PDF Reader | Medium | 5.3 | 2025-12-19 07:10:31 | Deep Dive |