| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-8049 | Telerik Document Processing Improper Handling of Memory Resources | Progress Software | Telerik Document Processing Libraries | Medium | 6.5 | 2024-11-13 15:20:32 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-7788 | Signatures in "repair mode" should not be trusted | The Document Foundation | LibreOffice | High | 7.8 | 2024-09-17 14:28:36 | Deep Dive |
| CVE-2024-39591 | Missing Authorization check in SAP Document Builder | SAP_SE | SAP Document Builder | Medium | 4.3 | 2024-08-13 05:00:43 | Deep Dive |
| CVE-2024-6472 | Ability to trust not validated macro signatures removed in high security mode | The Document Foundation | LibreOffice | High | 7.8 | 2024-08-05 12:55:39 | Deep Dive |
| CVE-2024-6803 | itsourcecode Document Management System insert.php sql injection | itsourcecode | Document Management System | Medium | 5.5 | 2024-07-17 02:31:05 | Deep Dive |
| CVE-2024-6737 | 2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control | 2100 TECHNOLOGY | Electronic Official Document Management System | High | 8.8 | 2024-07-15 02:23:06 | Deep Dive |
| CVE-2024-37504 | WordPress FileBird Document Library plugin <= 2.0.6 - Sensitive Data Exposure vulnerability | Ninja Team | FileBird Document Library | Medium | 5.3 | 2024-07-10 17:46:15 | Deep Dive |
| CVE-2024-37224 | WordPress SP Project & Document Manager plugin <= 4.71 - Directory Traversal vulnerability | smartypants | SP Project & Document Manager | High | 7.5 | 2024-07-09 09:59:20 | Deep Dive |
| CVE-2024-5261 | TLS certificate are not properly verified when utilizing LibreOfficeKit | The Document Foundation | LibreOffice | - | - | 2024-06-25 12:44:24 | Deep Dive |
| CVE-2024-6014 | itsourcecode Document Management System edithis.php sql injection | itsourcecode | Document Management System | Medium | 6.3 | 2024-06-15 16:31:04 | Deep Dive |
| CVE-2024-37301 | document-merge-service vulnerable to Remote Code Execution via Server-Side Template Injection | adfinis | document-merge-service | High | 7.2 | 2024-06-11 18:34:38 | Deep Dive |
| CVE-2024-34683 | Unrestricted file upload in SAP Document Builder (HTTP service) | SAP_SE | SAP Document Builder | Medium | 6.5 | 2024-06-11 02:08:47 | Deep Dive |
| CVE-2024-3749 | SP Project & Document Manager <= 4.71 - Subscriber+ File Download via IDOR | Unknown | SP Project & Document Manager | - | - | 2024-05-15 06:00:05 | Deep Dive |
| CVE-2024-3748 | SP Project & Document Manager <= 4.71 - Data Update via IDOR | Unknown | SP Project & Document Manager | - | - | 2024-05-15 06:00:04 | Deep Dive |
| CVE-2024-3044 | Graphic on-click binding allows unchecked script execution | The Document Foundation | LibreOffice | 中危 | - | 2024-05-14 20:19:51 | Deep Dive |
| CVE-2024-33002 | Cross-Site Scripting (XSS) Vulnerability in SAP S/4HANA (Document Service Handler for DPS) | SAP_SE | SAP S/4HANA (Document Service Handler for DPS) | Medium | 6.1 | 2024-05-14 03:49:25 | Deep Dive |
| CVE-2024-1693 | SP Project & Document Manager <= 4.70 - Authenticated (Subscriber+) Arbitrary Folder Name Update | smartypants | SP Project & Document Manager | Medium | 4.3 | 2024-05-09 20:03:20 | Deep Dive |
| CVE-2024-33923 | WordPress SP Project & Document Manager plugin <= 4.69 - Broken Access Control vulnerability | Smartypants | SP Project & Document Manager | Medium | 6.3 | 2024-05-03 08:24:58 | Deep Dive |
| CVE-2024-32551 | WordPress SP Project & Document Manage plugin <= 4.71 - Auth. SQL Injection vulnerability | Smartypants | SP Project & Document Manager | High | 7.6 | 2024-04-18 10:27:01 | Deep Dive |