| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-59469 | Veeam Backup & Replication 安全漏洞 | Veeam | Backup and Recovery | Critical | 9.0 | 2026-01-08 16:18:20 | Deep Dive |
| CVE-2025-55125 | Veeam Backup & Replication 安全漏洞 | Veeam | Backup And Recovery | High | 7.8 | 2026-01-08 16:18:20 | Deep Dive |
| CVE-2025-59468 | Veeam Backup & Replication 安全漏洞 | Veeam | Backup and Recovery | Critical | 9.0 | 2026-01-08 16:18:20 | Deep Dive |
| CVE-2025-59470 | Veeam Backup & Replication 安全漏洞 | Veeam | Backup and Recovery | Critical | 9.0 | 2026-01-08 16:18:20 | Deep Dive |
| CVE-2025-62842 | HBS 3 Hybrid Backup Sync | QNAP Systems Inc. | HBS 3 Hybrid Backup Sync | 中危 | - | 2026-01-02 15:51:41 | Deep Dive |
| CVE-2025-62840 | HBS 3 Hybrid Backup Sync | QNAP Systems Inc. | HBS 3 Hybrid Backup Sync | 中危 | - | 2026-01-02 15:51:35 | Deep Dive |
| CVE-2025-62992 | WordPress Everest Backup plugin <= 2.3.11 - Cross Site Request Forgery (CSRF) vulnerability | everestthemes | Everest Backup | Medium | 6.5 | 2025-12-31 08:59:01 | Deep Dive |
| CVE-2025-12838 | MSP360 Free Backup Link Following Local Privilege Escalation Vulnerability | MSP360 | Free Backup | - | - | 2025-12-23 21:41:11 | Deep Dive |
| CVE-2022-50687 | Cobian Backup 11 Gravity 11.2.0.582 Local Denial of Service via Password Field | Cobiansoft | Cobian Backup Gravity | Medium | 5.5 | 2025-12-22 21:35:26 | Deep Dive |
| CVE-2022-50688 | Cobian Backup Gravity 11.2.0.582 Unquoted Service Path Privilege Escalation | Cobiansoft | Cobian Backup Gravity | High | 8.4 | 2025-12-22 21:35:26 | Deep Dive |
| CVE-2025-12654 | Migration, Backup, Staging – WPvivid Backup & Migration <= 0.9.120 - Authenticated (Admin+) Arbitrary Directory Creation | wpvividplugins | WPvivid — Backup, Migration & Staging | Low | 2.7 | 2025-12-21 03:20:06 | Deep Dive |
| CVE-2023-53907 | Bludit 3.13.1 Authenticated Arbitrary File Download via Backup Plugin | Bludit | Backup Plugin | Medium | 6.5 | 2025-12-17 22:44:46 | Deep Dive |
| CVE-2025-11759 | Backup, Restore and Migrate your sites with XCloner <= 4.8.2 - Cross-Site Request Forgery in Xcloner_Remote_Storage:save() | watchful | Backup, Restore and Migrate your sites with XCloner | Medium | 4.3 | 2025-12-05 01:55:22 | Deep Dive |
| CVE-2025-12887 | Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App <= 3.6.1 - Missing Authorization to Authenticated (Subscriber+) OAuth Token Update | saadiqbal | Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App | Medium | 5.4 | 2025-12-03 12:29:54 | Deep Dive |
| CVE-2025-10304 | Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin <= 2.3.8 - Missing Authorization to Unauthenticated Backup Failure | everestthemes | Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin | Medium | 5.3 | 2025-12-03 03:27:15 | Deep Dive |
| CVE-2025-12394 | Backup Migration < 2.0.0 - Unauthenticated Backup Download | Unknown | Backup Migration | - | - | 2025-11-24 06:00:06 | Deep Dive |
| CVE-2025-12092 | CYAN Backup <= 2.5.4 - Authenticated (Admin+) Arbitrary File Deletion | gregross | CYAN Backup | Medium | 6.5 | 2025-11-08 09:28:09 | Deep Dive |
| CVE-2025-53246 | WordPress Backup and Move Plugin <= 0.1 - Broken Access Control Vulnerability | Gaurav Aggarwal | Backup and Move | Medium | 6.5 | 2025-11-06 15:54:00 | Deep Dive |
| CVE-2025-11833 | Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App <= 3.6.0 - Missing Authorization to Account Takeover via Unauthenticated Email Log Disclosure | saadiqbal | Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App | Critical | 9.8 | 2025-11-01 03:34:36 | Deep Dive |
| CVE-2025-48983 | Veeam Backup & Replication 安全漏洞 | Veeam | Backup and Replication | Critical | 9.9 | 2025-10-30 23:33:02 | Deep Dive |