| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-30792 | RustDesk Client Blindly Merges Unauthenticated Strategy Payloads, Bypassing Local Security Settings | rustdesk-client | RustDesk Client | 超危 | - | 2026-03-05 15:14:44 | Deep Dive |
| CVE-2026-30791 | RustDesk Client Accepts Pseudo-Encrypted Config Strings Without Cryptographic Validation | rustdesk-client | RustDesk Client | 高危 | - | 2026-03-05 14:47:57 | Deep Dive |
| CVE-2024-57854 | Net::NSCA::Client versions through 0.009002 for Perl uses a poor random number generator | DOUGDUDE | Net::NSCA::Client | 超危 | - | 2026-03-05 02:18:26 | Deep Dive |
| CVE-2025-47147 | Gallagher Command Centre Mobile Client 安全漏洞 | Gallagher | Command Centre Mobile Client | Medium | 5.7 | 2026-03-03 02:39:31 | Deep Dive |
| CVE-2025-10990 | Rexml: rexml: denial of service via inefficient regex parsing | - | - | High | 7.5 | 2026-02-27 13:32:02 | Deep Dive |
| CVE-2026-3091 | Synology Presto Client 代码问题漏洞 | Synology | Synology Presto Client | Medium | 6.7 | 2026-02-24 02:31:20 | Deep Dive |
| CVE-2026-2490 | RustDesk Client for Windows Transfer File Link Following Information Disclosure Vulnerability | RustDesk | Client for Windows | - | - | 2026-02-20 22:24:43 | Deep Dive |
| CVE-2026-2716 | Client Testimonial Slider <= 2.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Testimonial Heading' Setting | amu02aftab | Client Testimonial Slider | Medium | 4.4 | 2026-02-19 09:26:36 | Deep Dive |
| CVE-2026-25364 | WordPress Client Invoicing by Sprout Invoices plugin <= 20.8.8 - Broken Access Control vulnerability | BoldGrid | Client Invoicing by Sprout Invoices | - | - | 2026-02-19 08:26:59 | Deep Dive |
| CVE-2026-25003 | WordPress Client Portal plugin <= 1.2.1 - Broken Access Control vulnerability | madalin.ungureanu | Client Portal | - | - | 2026-02-19 08:26:52 | Deep Dive |
| CVE-2019-25361 | Ayukov NFTP client 1.71 - 'SYST' Buffer Overflow | Ayukov | Ayukov NFTP client | Critical | 9.8 | 2026-02-18 21:55:08 | Deep Dive |
| CVE-2026-2495 | WPNakama <= 0.6.5 - Unauthenticated SQL Injection via 'order' REST API Parameter | qdonow | WPNakama – Team and multi-Client Collaboration, Editorial and Project Management | High | 7.5 | 2026-02-18 08:26:04 | Deep Dive |
| CVE-2026-24319 | Information Disclosure Vulnerability in SAP Business One (B1 Client Memory Dump Files) | SAP_SE | SAP Business One (B1 Client Memory Dump Files) | Medium | 5.8 | 2026-02-10 03:03:34 | Deep Dive |
| CVE-2020-37095 | Cyberoam Authentication Client 2.1.2.7 - Buffer Overflow (SEH) | Cyberoam | Cyberoam Authentication Client | Critical | 9.8 | 2026-02-06 23:14:05 | Deep Dive |
| CVE-2025-15320 | Tanium addressed a denial of service vulnerability in Tanium Client. | Tanium | Tanium Client | Low | 3.3 | 2026-02-06 19:18:13 | Deep Dive |
| CVE-2026-25651 | client-certificate-auth has an Open Redirect via Host Header Injection in HTTP-to-HTTPS redirect | tgies | client-certificate-auth | Medium | 6.1 | 2026-02-06 18:50:26 | Deep Dive |
| CVE-2025-10753 | OAuth Single Sign On – SSO (OAuth Client) <= 6.26.14 - Missing Authorization | cyberlord92 | OAuth Single Sign On – SSO (OAuth Client) | Medium | 5.3 | 2026-02-06 06:46:30 | Deep Dive |
| CVE-2019-25283 | Shrew Soft VPN Client 2.2.2 - 'iked' Unquoted Service Path | shrew | Shrew Soft VPN Client | High | 7.8 | 2026-02-04 23:17:25 | Deep Dive |
| CVE-2026-20730 | BIG-IP Edge Client for Windows vulnerability | F5 | BIG-IP Edge Client | Low | 3.3 | 2026-02-04 15:02:05 | Deep Dive |
| CVE-2025-14840 | HTTP Client Manager - Less critical - Information disclosure - SA-CONTRIB-2025-126 | Drupal | HTTP Client Manager | - | - | 2026-01-28 20:03:22 | Deep Dive |