| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2019-25325 | Thrive Smart Home 1.1 - 'Smart Home' Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') | Thrive | Smart Home | High | 8.2 | 2026-02-12 22:48:37 | Deep Dive |
| CVE-2025-14014 | Insecure File Upload in NTN Informatics' Smart Panel | NTN Information Processing Services Computer Software Hardware Industry and Trade Ltd. Co. | Smart Panel | Critical | 9.8 | 2026-02-12 13:58:37 | Deep Dive |
| CVE-2026-26235 | JUNG Smart Visu Server 1.1.1050 - 'JUNG Smart Visu Server' Missing Authentication | ALBRECHT JUNG GMBH & CO. KG | JUNG Smart Visu Server | High | 7.5 | 2026-02-12 02:31:14 | Deep Dive |
| CVE-2026-26234 | JUNG Smart Visu Server - Improper Neutralization of HTTP Headers for Scripting Syntax | ALBRECHT JUNG GMBH & CO. KG | JUNG Smart Visu Server | High | 8.8 | 2026-02-12 02:31:12 | Deep Dive |
| CVE-2026-25872 | JUNG Smart Panel 5.1 KNX Unauthenticated Path Traversal | ALBRECHT JUNG GMBH & CO. KG | JUNG Smart Panel 5.1 KNX | Medium | 5.3 | 2026-02-10 22:25:56 | Deep Dive |
| CVE-2026-2065 | Flycatcher Toys smART Pixelator Bluetooth Low Energy missing authentication | Flycatcher Toys | smART Pixelator | Medium | 6.3 | 2026-02-06 20:02:07 | Deep Dive |
| CVE-2026-0742 | Smart Appointment & Booking <= 1.0.7 - Authenticated (Subscriber+) Stored Cross-Site Scripting via saab_save_form_data AJAX Action | zealopensource | Smart Appointment & Booking | Medium | 6.4 | 2026-02-04 08:25:32 | Deep Dive |
| CVE-2025-7014 | Session Hijacking in QRMenumPro's Menu Panel | QR Menu Pro Smart Menu Systems | Menu Panel | Medium | 5.7 | 2026-01-29 13:47:31 | Deep Dive |
| CVE-2025-7013 | IDOR in QRMenumPro's Menu Panel | QR Menu Pro Smart Menu Systems | Menu Panel | Medium | 5.7 | 2026-01-29 13:40:57 | Deep Dive |
| CVE-2025-21589 | Session Smart Router, Session Smart Conductor, WAN Assurance Router: API Authentication Bypass vulnerability | Juniper Networks | Session Smart Router | Critical | 9.8 | 2026-01-27 20:32:13 | Deep Dive |
| CVE-2026-1449 | Hisense TransTech Smart Bus Management System TireMng.aspx Page_Load sql injection | Hisense TransTech | Smart Bus Management System | High | 7.3 | 2026-01-26 23:32:11 | Deep Dive |
| CVE-2026-24588 | WordPress Smart Product Viewer plugin <= 1.5.4 - Broken Access Control vulnerability | topdevs | Smart Product Viewer | Medium | 4.3 | 2026-01-23 14:29:01 | Deep Dive |
| CVE-2021-47796 | Denver Smart Wifi Camera SHC-150 - 'Telnet' Remote Code Execution (RCE) | Denver | Smart Wifi Camera | Critical | 9.8 | 2026-01-15 23:25:45 | Deep Dive |
| CVE-2021-47777 | Build Smart ERP 21.0817 - 'eidValue' SQL Injection (Unauthenticated) | Ribccs | Build Smart ERP | High | 8.2 | 2026-01-15 15:52:14 | Deep Dive |
| CVE-2026-0842 | Flycatcher Toys smART Sketcher Bluetooth Low Energy missing authentication | Flycatcher Toys | smART Sketcher | Medium | 6.3 | 2026-01-11 08:02:06 | Deep Dive |
| CVE-2025-13841 | Smart App Banners <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'size' and 'verticalalign' Shortcode Attributes | clevelandwebdeveloper | Smart App Banners | Medium | 6.4 | 2026-01-07 09:21:03 | Deep Dive |
| CVE-2025-15474 | AuntyFey Smart Combination Lock BLE Connection Flood DoS | AuntyFey | AuntyFey Smart Combination Lock | 中危 | - | 2026-01-07 04:33:17 | Deep Dive |
| CVE-2025-3660 | Petlibro Smart Pet Feeder Platform through 1.7.31 Broken Access Control via API endpoint | Petlibrio | Smart Pet Feeder Platform | Medium | 6.5 | 2026-01-03 23:33:05 | Deep Dive |
| CVE-2025-3653 | Petlibro Smart Pet Feeder through 1.7.31 Platform Improper Access Control via API endpoint | Petlibrio | Smart Pet Feeder Platform | High | 7.3 | 2026-01-03 23:33:04 | Deep Dive |
| CVE-2025-3654 | Petlibro Smart Pet Feeder Platform through 1.7.31 Information Disclosure via API endpoint | Petlibrio | Smart Pet Feeder Platform | Medium | 5.3 | 2026-01-03 23:33:04 | Deep Dive |