| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-21039 | SAMSUNG S Assistant 安全漏洞 | Samsung Mobile | S Assistant | Medium | 5.1 | 2025-09-03 06:05:45 | Deep Dive |
| CVE-2025-21038 | SAMSUNG S Assistant 安全漏洞 | Samsung Mobile | S Assistant | Medium | 5.1 | 2025-09-03 06:05:44 | Deep Dive |
| CVE-2025-8357 | Media Library Assistant <= 3.27 - Authenticated (Author+) Limited File Deletion | dglingren | Media Library Assistant | Medium | 4.3 | 2025-08-19 04:26:02 | Deep Dive |
| CVE-2025-7641 | Assistant for NextGEN Gallery <= 1.0.9 - Unauthenticated Arbitrary Directory Deletion | 48hmorris | Assistant for NextGEN Gallery | High | 7.5 | 2025-08-15 08:25:38 | Deep Dive |
| CVE-2025-21093 | Intel Driver & Support Assistant Tool 代码问题漏洞 | - | Intel(R) Driver & Support Assistant Tool software | Medium | 6.7 | 2025-08-12 16:58:28 | Deep Dive |
| CVE-2025-7035 | Media Library Assistant <= 3.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via mla_tag_cloud and mla_term_list Shortcodes | dglingren | Media Library Assistant | Medium | 6.4 | 2025-07-16 09:22:57 | Deep Dive |
| CVE-2025-43019 | HP Support Assistant – Potential Escalation of Privilege | HP Inc. | HP Support Assistant | - | - | 2025-07-08 15:25:34 | Deep Dive |
| CVE-2025-43026 | HP Support Assistant – Potential Escalation of Privilege | HP, Inc. | HP Support Assistant | - | - | 2025-06-05 19:41:31 | Deep Dive |
| CVE-2025-31564 | WordPress Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One plugin <= 2.2.6 - SQL Injection vulnerability | aitool | Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One | High | 8.5 | 2025-04-01 20:58:13 | Deep Dive |
| CVE-2025-31627 | WordPress Media Library Assistant plugin <= 3.24 - Stored Cross Site Scripting (XSS) vulnerability | David Lingren | Media LIbrary Assistant | Medium | 5.9 | 2025-03-31 12:55:46 | Deep Dive |
| CVE-2025-26885 | WordPress Assistant Plugin <= 1.5.1 - PHP Object Injection vulnerability | Beaver Builder | WordPress Assistant | 高危 | - | 2025-03-03 13:30:41 | Deep Dive |
| CVE-2025-25305 | SSL validation for outgoing requests in Home Assistant Core and used libs not correct | home-assistant | core | High | 7.0 | 2025-02-18 18:53:11 | Deep Dive |
| CVE-2024-11974 | Media Library Assistant <= 3.23 - Reflected Cross-Site Scripting via smc_settings_tab, unattachfixit-action, and woofixit-action Parameters | dglingren | Media Library Assistant | Medium | 6.1 | 2025-01-04 07:24:24 | Deep Dive |
| CVE-2024-52383 | WordPress Ai Auto Tool Content Writing Assistant plugin <= 2.1.2 - Broken Access Control vulnerability | aitool | Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One | High | 7.5 | 2024-11-14 17:36:44 | Deep Dive |
| CVE-2024-51661 | WordPress Media Library Assistant plugin <= 3.19 - Remote Code Execution (RCE) vulnerability | David Lingren | Media LIbrary Assistant | Critical | 9.1 | 2024-11-04 11:06:58 | Deep Dive |
| CVE-2024-9626 | Editorial Assistant by Sovrn <= 1.3.3 - Missing Authorization to Authenticated (Subscriber+) Attachment Upload and Set Post Featured Image | zemanta | Editorial Assistant by Sovrn | Medium | 4.3 | 2024-10-26 01:58:36 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-34670 | SAMSUNG Sound Assistant 安全漏洞 | Samsung Mobile | Sound Assistant | Medium | 4.0 | 2024-10-08 06:30:53 | Deep Dive |
| CVE-2024-34661 | SAMSUNG Mobile devices 安全漏洞 | Samsung Mobile | Samsung Assistant | Medium | 4.3 | 2024-09-04 05:32:48 | Deep Dive |
| CVE-2024-6823 | Media Library Assistant <= 3.18 - Authenticated (Author+) Arbitrary File Upload via mla-inline-edit-upload-scripts AJAX Action | dglingren | Media Library Assistant | High | 8.8 | 2024-08-13 05:30:56 | Deep Dive |