| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-48118 | WordPress Woocommerce Partial Shipment plugin <= 3.2 - SQL Injection Vulnerability | WpExperts Hub | Woocommerce Partial Shipment | High | 8.5 | 2025-06-17 15:01:32 | Deep Dive |
| CVE-2025-1093 | AIHub <= 1.3.7 - Unauthenticated Arbitrary File Upload in generate_image | LiquidThemes | AI Hub - Startup & Technology WordPress Theme | Critical | 9.8 | 2025-04-19 03:21:23 | Deep Dive |
| CVE-2025-26927 | WordPress AI Hub plugin <= 1.3.7 - Arbitrary File Upload vulnerability | LiquidThemes | AI Hub | Critical | 10.0 | 2025-04-15 21:53:12 | Deep Dive |
| CVE-2025-1073 | Panasonic IR Control Hub 安全漏洞 | Panasonic | IR Control Hub (IR Blaster) | High | 7.5 | 2025-04-10 11:16:34 | Deep Dive |
| CVE-2025-3442 | Information Disclosure Vulnerability in TP-Link Tapo IoT Smart Hub | TP-Link | Tapo H200 V1 IoT Smart Hub | - | - | 2025-04-09 07:02:54 | Deep Dive |
| CVE-2025-3019 | Cross-site scripting vulnerabilities in KNIME Business Hub web pages | KNIME | KNIME Business Hub | 中危 | - | 2025-03-31 06:49:34 | Deep Dive |
| CVE-2025-2402 | Hard-coded password for object store of KNIME Business Hub | KNIME | KNIME Business Hub | 中危 | - | 2025-03-31 06:11:40 | Deep Dive |
| CVE-2025-2787 | Ingress-nginx vulnerability in KNIME Business Hub | KNIME | KNIME Business Hub | - | - | 2025-03-26 21:08:08 | Deep Dive |
| CVE-2025-21194 | Microsoft Surface Security Feature Bypass Vulnerability | Microsoft | Microsoft Surface Go | High | 7.1 | 2025-02-11 17:58:26 | Deep Dive |
| CVE-2024-11831 | Npm-serialize-javascript: cross-site scripting (xss) in serialize-javascript | - | - | Medium | 5.4 | 2025-02-10 15:27:47 | Deep Dive |
| CVE-2024-35134 | IBM Analytics Content Hub information disclosure | IBM | Analytics Content Hub | Medium | 5.3 | 2025-01-25 14:05:45 | Deep Dive |
| CVE-2024-39750 | IBM Analytics Content Hub buffer overflow | IBM | Analytics Content Hub | High | 8.8 | 2025-01-25 14:04:41 | Deep Dive |
| CVE-2024-13683 | Automate Hub Free by Sperse.IO <= 1.7.0 - Cross-Site Request Forgery to Activation Status Update | sperse | Automate Hub Free by Sperse.IO | Medium | 4.3 | 2025-01-24 07:04:10 | Deep Dive |
| CVE-2025-24456 | JetBrains Hub 安全漏洞 | JetBrains | Hub | Medium | 6.7 | 2025-01-21 17:23:17 | Deep Dive |
| CVE-2024-11923 | Sensitive Information Disclosure in Fortra Application Hub Prior to version 1.3 | Fortra | Fortra Application Hub | Medium | 5.5 | 2025-01-17 23:44:06 | Deep Dive |
| CVE-2024-11377 | Automate Hub Free by Sperse.IO <= 1.7.0 - Reflected Cross-Site Scripting | sperse | Automate Hub Free by Sperse.IO | Medium | 6.1 | 2025-01-07 04:22:17 | Deep Dive |
| CVE-2024-56206 | WordPress gap-hub-user-role. plugin <= 3.4.1 - CSRF to Broken Authentication vulnerability | krishankakkar | gap-hub-user-role | High | 8.8 | 2024-12-31 13:29:48 | Deep Dive |
| CVE-2024-12867 | Server-Side Request Forgery in Arctic Hub URL Mapper allows an unauthenticated remote attacker to exfiltrate and modify configurations and data | Arctic Security | Arctic Hub | 高危 | - | 2024-12-20 19:19:44 | Deep Dive |
| CVE-2024-12099 | Dollie Hub – Build Your Own WordPress Cloud Platform <= 6.2.0 - Authenticated (Contributor+) Post Disclosure | getdollie | Dollie AI – Connect | Medium | 4.3 | 2024-12-04 03:37:41 | Deep Dive |
| CVE-2024-51820 | WordPress L Squared Hub WP plugin <= 1.0 - SQL Injection vulnerability | wplsquared | L Squared Hub WP | High | 8.5 | 2024-11-11 06:06:21 | Deep Dive |