| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-42894 | Path Traversal vulnerability in SAP Business Connector | SAP_SE | SAP Business Connector | Medium | 6.8 | 2025-11-11 00:19:22 | Deep Dive |
| CVE-2025-42893 | Open Redirect vulnerability in SAP Business Connector | SAP_SE | SAP Business Connector | Medium | 6.1 | 2025-11-11 00:17:34 | Deep Dive |
| CVE-2025-42892 | OS Command Injection vulnerability in SAP Business Connector | SAP_SE | SAP Business Connector | Medium | 6.8 | 2025-11-11 00:17:18 | Deep Dive |
| CVE-2025-42886 | Reflected Cross-Site Scripting (XSS) vulnerability in SAP Business Connector | SAP_SE | SAP Business Connector | Medium | 6.1 | 2025-11-11 00:14:33 | Deep Dive |
| CVE-2025-36054 | Cross-site scripting vulnerability affect IBM Business Automation Workflow Process Federation Server - | IBM | Business Automation Workflow containers | Medium | 6.1 | 2025-11-06 14:11:49 | Deep Dive |
| CVE-2025-36172 | Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for 24.0.0-IF007, 24.0.1-IF005 and 25.0.0-IF002 | IBM | Cloud Pak for Business Automation | Medium | 6.4 | 2025-11-03 21:18:09 | Deep Dive |
| CVE-2025-36093 | security vulnerabilities are addressed with IBM Business Automation Insights iFixes for October 2025. | IBM | Cloud Pak For Business Automation | Medium | 4.8 | 2025-11-03 15:54:31 | Deep Dive |
| CVE-2025-36092 | IBM Business Automation Insights improper input validation | IBM | Cloud Pak For Business Automation | Medium | 6.5 | 2025-11-03 15:15:44 | Deep Dive |
| CVE-2025-36091 | IBM Business Automation Insights unverified ownership | IBM | Cloud Pak For Business Automation | Medium | 4.3 | 2025-11-03 15:14:03 | Deep Dive |
| CVE-2025-4952 | Denial-of-service vulnerability in ESET security products for Windows | ESET | ESET NOD32 Antivirus | 中危 | - | 2025-10-31 12:28:15 | Deep Dive |
| CVE-2025-64219 | WordPress Business Directory plugin <= 6.4.18 - Broken Access Control vulnerability | Strategy11 Team | Business Directory | - | - | 2025-10-29 08:38:10 | Deep Dive |
| CVE-2025-12224 | Iqbolshoh php-business-website contact.php cross site scripting | Iqbolshoh | php-business-website | Low | 3.5 | 2025-10-27 04:32:10 | Deep Dive |
| CVE-2025-62934 | WordPress WP Business Hours plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability | Mejar | WP Business Hours | High | 7.1 | 2025-10-27 01:34:03 | Deep Dive |
| CVE-2025-10488 | Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings <= 8.4.8 - Authenticated (Subscriber+) Arbitrary File Move | wpwax | Directorist: AI-Powered Business Directory, Listings & Classified Ads | High | 8.1 | 2025-10-25 06:49:21 | Deep Dive |
| CVE-2025-11870 | Simple Business Data <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | dmbarber | Simple Business Data | Medium | 6.4 | 2025-10-22 08:27:10 | Deep Dive |
| CVE-2025-53049 | Oracle Analytics 安全漏洞 | Oracle Corporation | Oracle Business Intelligence Enterprise Edition | High | 8.4 | 2025-10-21 20:02:58 | Deep Dive |
| CVE-2025-43991 | Dell SupportAssist for Business PCs和Dell SupportAssist for Home PCs 安全漏洞 | Dell | SupportAssist for Home PCs | Medium | 6.3 | 2025-10-13 14:30:56 | Deep Dive |
| CVE-2025-59286 | Copilot Information Disclosure Vulnerability | Microsoft | Microsoft 365 Copilot's Business Chat | Critical | 9.3 | 2025-10-09 21:04:15 | Deep Dive |
| CVE-2025-59272 | Copilot Information Disclosure Vulnerability | Microsoft | Microsoft 365 Copilot's Business Chat | Critical | 9.3 | 2025-10-09 21:04:14 | Deep Dive |
| CVE-2025-11240 | Open redirect vulnerability in KNIME Business Hub | KNIME | KNIME Business Hub | 高危 | - | 2025-10-02 12:30:34 | Deep Dive |