Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 780 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-3822 Taipower|Taipower APP(Android) - Improper Certificate Validation TaipowerTaipower APP Medium 6.5 2026-03-09 03:38:35 Deep Dive
CVE-2026-3695 SourceCodester Modern Image Gallery App delete.php path traversal SourceCodesterModern Image Gallery App Medium 6.5 2026-03-08 00:32:11 Deep Dive
CVE-2026-1074 WP App Bar <= 1.5 - Unauthenticated Stored Cross-Site Scripting via 'app-bar-features' Parameter ryscriptWP App Bar High 7.2 2026-03-07 07:22:07 Deep Dive
CVE-2026-28509 LangBot has a Cross Site Scripting(XSS) Vulnerability langbot-appLangBot Medium 6.3 2026-03-06 04:16:59 Deep Dive
CVE-2025-13490 IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands that report metrics are vulnerable to loss of confidentiality IBMApp Connect Operator Medium 5.9 2026-03-03 19:58:18 Deep Dive
CVE-2026-3465 Tuya App/SDK JSON Data Point denial of service TuyaApp Low 3.1 2026-03-03 15:02:08 Deep Dive
CVE-2026-28416 Gradio has SSRF via Malicious `proxy_url` Injection in `gr.load()` Config Processing gradio-appgradio High 8.2 2026-02-27 21:47:05 Deep Dive
CVE-2026-28415 Gradio has Open Redirect in OAuth Flow gradio-appgradio Medium 4.3 2026-02-27 21:44:52 Deep Dive
CVE-2026-28414 Gradio has Absolute Path Traversal on Windows with Python 3.13+ gradio-appgradio High 7.5 2026-02-27 21:43:28 Deep Dive
CVE-2026-27167 Gradio: Mocked OAuth Login Exposes Server Credentials and Uses Hardcoded Session Secret gradio-appgradio None 0.0 2026-02-27 21:40:58 Deep Dive
CVE-2026-27974 Audiobooksheld VUlnerable to Stored XSS in WrappingMarquee.js via Audiobook Metadata (Mobile App Audio Player) advplyraudiobookshelf-app Medium 4.8 2026-02-26 02:10:31 Deep Dive
CVE-2026-27973 Audiobookshelf has Stored XSS in ItemSearchCard.vue via Audiobook Metadata (Search Results on Mobile App) advplyraudiobookshelf Medium 4.0 2026-02-26 02:06:49 Deep Dive
CVE-2026-27627 Karakeep's Reddit plugin content bypasses DOMPurify sanitization, enabling stored XSS karakeep-appkarakeep High 8.2 2026-02-25 03:48:07 Deep Dive
CVE-2026-3070 SourceCodester Modern Image Gallery App upload.php cross site scripting SourceCodesterModern Image Gallery App Medium 4.3 2026-02-24 04:32:08 Deep Dive
CVE-2026-2974 AliasVault App Backup aliasvault.xml backup -AliasVault App Low 2.5 2026-02-23 05:32:10 Deep Dive
CVE-2026-0557 WP Data Access <= 5.5.63 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'wpda_app' Shortcode peterschulznlWP Data Access – App Builder for Tables, Forms, Charts, Maps & Dashboards Medium 6.4 2026-02-14 06:42:30 Deep Dive
CVE-2026-1578 HP App – Potential Cross-Site Scripting HP IncHP App--2026-02-13 14:56:43 Deep Dive
CVE-2025-9293 Insufficient Certificate Validation in Multiple Mobile Applications Allows Man in the Middle Interception TP-Link Systems Inc.Tapo App--2026-02-13 00:22:27 Deep Dive
CVE-2026-25933 Arduino App Lab has Improper Data Validation in Internal Terminal Interface arduinoarduino-app-lab Medium 6.8 2026-02-12 19:57:18 Deep Dive
CVE-2026-21517 Windows App for Mac Installer Elevation of Privilege Vulnerability MicrosoftWindows App for Mac Medium 4.7 2026-02-10 17:51:16 Deep Dive