| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-5532 | Faculty Staff and Student Directory Plugin – Campus Directory <= 1.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | emarket-design | Campus Directory – Faculty, Staff & Student Directory Plugin for WordPress | Medium | 6.4 | 2025-06-04 03:40:59 | Deep Dive |
| CVE-2025-5531 | Staff Directory – Employee Directory for WordPress <= 4.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | emarket-design | Employee Directory – Staff & Team Directory | Medium | 6.4 | 2025-06-04 03:40:58 | Deep Dive |
| CVE-2025-4081 | TCC Bypass via Dylib Substitution in DaVinci Resolve | Blackmagic Design | DaVinci Resolve | - | - | 2025-05-29 14:25:09 | Deep Dive |
| CVE-2025-47529 | WordPress Experto CTA Widget – Call To Action, Sticky CTA, Floating Button Plugin <= 1.1.1 - Settings Change Vulnerability | UX Design Experts | Experto CTA Widget – Call To Action, Sticky CTA, Floating Button Plugin | Medium | 6.5 | 2025-05-23 12:43:33 | Deep Dive |
| CVE-2025-30421 | Stack-based Buffer Overflow in DrObjectStorage::XML_Serialize() in NI Circuit Design Suite | NI | Circuit Design Suite | High | 7.8 | 2025-05-15 16:32:33 | Deep Dive |
| CVE-2025-30420 | Out of Bounds Read in Bitmap::InternalDraw() in NI Circuit Design Suite | NI | Circuit Design Suite | High | 7.8 | 2025-05-15 16:29:39 | Deep Dive |
| CVE-2025-30419 | Out of Bounds Read in GetSymbolBorderRectSize() in NI Circuit Design Suite | NI | Circuit Design Suite | High | 7.8 | 2025-05-15 16:27:44 | Deep Dive |
| CVE-2025-30418 | Out of Bounds Write in CheckPins() in NI Circuit Design Suite | NI | Circuit Design Suite | High | 7.8 | 2025-05-15 16:25:19 | Deep Dive |
| CVE-2025-30417 | Out of Bounds Write in Library!DecodeBase64() in NI Circuit Design Suite | NI | Circuit Design Suite | High | 7.8 | 2025-05-15 16:18:54 | Deep Dive |
| CVE-2025-47533 | WordPress Graphina plugin <= 3.0.4 - Cross Site Request Forgery (CSRF) to Local File Inclusion vulnerability | Iqonic Design | Graphina | High | 8.1 | 2025-05-07 14:20:13 | Deep Dive |
| CVE-2025-47480 | WordPress Graphina plugin <= 3.0.4 - Broken Access Control Vulnerability | Iqonic Design | Graphina | Medium | 5.4 | 2025-05-07 14:19:47 | Deep Dive |
| CVE-2025-2613 | Login Manager – Design Login Page, View Login Activity, Limit Login Attempts <= 2.0.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via Custom URL | mehrazmorshed | Login Manager – Design Login Page, View Login Activity, Limit Login Attempts | Medium | 4.4 | 2025-04-18 01:44:11 | Deep Dive |
| CVE-2025-32254 | WordPress WPBookit plugin <= 1.0.7 - Broken Access Control vulnerability | Iqonic Design | WPBookit | Medium | 5.3 | 2025-04-04 15:59:28 | Deep Dive |
| CVE-2025-31815 | WordPress Design Blocks plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability | devscred | Design Blocks | Medium | 6.5 | 2025-04-01 14:51:43 | Deep Dive |
| CVE-2025-1798 | Design Comuni Italia < 1.1.2 - Unauthenticated Stored XSS | Unknown | design-comuni-wordpress-theme | 中危 | - | 2025-03-25 06:00:15 | Deep Dive |
| CVE-2025-30522 | WordPress Contact Form 7 Material Design plugin <= 1.0.0 - CSRF to Stored XSS vulnerability | Damian Orzol | Contact Form 7 Material Design | High | 7.1 | 2025-03-24 13:46:37 | Deep Dive |
| CVE-2025-26910 | WordPress WPBookit plugin <= 1.0.1 - Cross Site Request Forgery (CSRF) Vulnerability | Iqonic Design | WPBookit | High | 7.1 | 2025-03-10 14:34:40 | Deep Dive |
| CVE-2025-1413 | Dylib Hijacking in DaVinci Resolve | Blackmagic Design Inc | DaVinci Resolve | 高危 | - | 2025-02-28 08:25:25 | Deep Dive |
| CVE-2025-22205 | Extension - admiror-design-studio.com - Path traversal in the Admiror Gallery 4.x component for Joomla | www.admiror-design-studio.com | Admiror Gallery component for Joomla | 中危 | - | 2025-02-04 07:21:28 | Deep Dive |
| CVE-2025-0357 | WPBookit <= 1.6.9 - Unauthenticated Arbitrary File Upload | Iqonic Design | WPBookit | Critical | 9.8 | 2025-01-25 01:44:37 | Deep Dive |