| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-36357 | IBM Planning Analytics Local Directory Traversal | IBM | IBM Planning Analytics Local | High | 8.0 | 2025-11-17 20:07:01 | Deep Dive |
| CVE-2025-64292 | WordPress Analytics Germanized for Google Analytics plugin <= 1.6.2 - Cross Site Scripting (XSS) vulnerability | PascalBajorat | Analytics Germanized for Google Analytics | Medium | 6.5 | 2025-11-13 09:24:33 | Deep Dive |
| CVE-2025-64293 | WordPress 0 Day Analytics plugin <= 4.0.0 - SQL Injection vulnerability | Golemiq | 0 Day Analytics | High | 7.6 | 2025-11-12 15:52:49 | Deep Dive |
| CVE-2025-8324 | SQL Injection | Zohocorp | ManageEngine Analytics Plus | Critical | 9.8 | 2025-11-11 13:04:01 | Deep Dive |
| CVE-2025-33150 | IBM Cognos Analytics Certified Containers information disclosure | IBM | Cognos Analytics Certified Containers | Medium | 5.3 | 2025-11-10 19:33:55 | Deep Dive |
| CVE-2025-10931 | Umami Analytics - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-109 | Drupal | Umami Analytics | - | - | 2025-10-29 23:13:40 | Deep Dive |
| CVE-2025-10047 | Email Tracker <= 5.3.15 - Authenticated (Admin+) SQL Injection | pmbaldha | Email Tracker | Medium | 4.9 | 2025-10-22 08:27:12 | Deep Dive |
| CVE-2025-9428 | SQL Injection | Zohocorp | Analytics Plus | High | 8.3 | 2025-10-21 11:43:07 | Deep Dive |
| CVE-2025-9804 | Improper Access Control in Multiple WSO2 Products via Internal SOAP Admin Services and System REST APIs | WSO2 | WSO2 Identity Server as Key Manager | High | 8.9 | 2025-10-16 12:33:45 | Deep Dive |
| CVE-2025-58579 | Username Disclosure Through Missing Authentication | SICK AG | Baggage Analytics | Medium | 5.3 | 2025-10-06 07:09:09 | Deep Dive |
| CVE-2025-58591 | Path Traversal | SICK AG | Baggage Analytics | Medium | 6.5 | 2025-10-06 07:07:30 | Deep Dive |
| CVE-2025-58590 | Path traversal | SICK AG | Baggage Analytics | Medium | 6.5 | 2025-10-06 07:06:26 | Deep Dive |
| CVE-2025-58589 | Information Disclosure Through Stacktrace | SICK AG | Baggage Analytics | Low | 2.7 | 2025-10-06 07:03:41 | Deep Dive |
| CVE-2025-58587 | Improper Restriction of Excessive Authentication Attempts | SICK AG | Baggage Analytics | Medium | 6.5 | 2025-10-06 07:03:16 | Deep Dive |
| CVE-2025-58586 | User Enumeration by excessive error output | SICK AG | Baggage Analytics | Medium | 5.3 | 2025-10-06 07:02:47 | Deep Dive |
| CVE-2025-58585 | Sensitive Information Disclosure Through Missing Authentication | SICK AG | Baggage Analytics | Medium | 5.3 | 2025-10-06 07:01:46 | Deep Dive |
| CVE-2025-58584 | Plain Text Transmission of Username and Password in the URL | SICK AG | Baggage Analytics | Medium | 5.3 | 2025-10-06 07:01:05 | Deep Dive |
| CVE-2025-58583 | User Enumeration | SICK AG | Enterprise Analytics | Medium | 5.3 | 2025-10-06 06:52:04 | Deep Dive |
| CVE-2025-58582 | Uncontrolled Resource Consumption via log file | SICK AG | Enterprise Analytics | Medium | 5.3 | 2025-10-06 06:50:57 | Deep Dive |
| CVE-2025-58581 | Information Disclosure Through Stacktrace-/MQTT/Config/changeAll | SICK AG | Enterprise Analytics | Medium | 4.3 | 2025-10-06 06:50:12 | Deep Dive |