Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 1280 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-2964 higuma web-audio-recorder-js Dynamic Config Handling WebAudioRecorder.js extend prototype pollution higumaweb-audio-recorder-js Medium 5.0 2026-02-23 01:02:10 Deep Dive
CVE-2019-25462 Web Ofisi Rent a Car v3 SQL Injection via klima Parameter Web-ofisiRent a Car High 8.2 2026-02-22 14:12:16 Deep Dive
CVE-2019-25461 Web Ofisi Platinum E-Ticaret v5 SQL Injection via ajax/productsFilterSearch Web-ofisiTicaret High 7.5 2026-02-22 14:12:15 Deep Dive
CVE-2019-25460 Web Ofisi Platinum E-Ticaret v5 SQL Injection via q Parameter Web-ofisiTicaret High 7.5 2026-02-22 14:12:14 Deep Dive
CVE-2019-25459 Web Ofisi Emlak V2 SQL Injection via emlak-ara.html Web-ofisiEmlak Critical 9.8 2026-02-22 14:12:13 Deep Dive
CVE-2019-25458 Web Ofisi Firma Rehberi v1 SQL Injection via firmalar.html Web-ofisiFirma Rehberi Critical 9.8 2026-02-22 14:12:12 Deep Dive
CVE-2019-25457 Web Ofisi Firma v13 SQL Injection via oz Parameter Web-ofisiFirma High 7.5 2026-02-22 14:12:11 Deep Dive
CVE-2019-25456 Web Ofisi Emlak v2 SQL Injection via ara Parameter Web-ofisiEmlak Critical 9.1 2026-02-22 14:12:10 Deep Dive
CVE-2019-25455 Web Ofisi E-Ticaret v3 SQL Injection via ara.html Web-ofisiTicaret High 7.5 2026-02-22 14:12:10 Deep Dive
CVE-2019-25442 Web Wiz Forums 12.01 SQL Injection via PF Parameter WebwizWeb Wiz Forums High 7.5 2026-02-22 13:18:22 Deep Dive
CVE-2026-27480 Static Web Server: Timing-Based Username Enumeration in Basic Authentication static-web-serverstatic-web-server Medium 5.3 2026-02-21 09:14:30 Deep Dive
CVE-2025-69383 WordPress WP shop plugin <= 2.6.1 - Local File Inclusion vulnerability Agence web Eoxia - MontpellierWP shop--2026-02-20 15:46:54 Deep Dive
CVE-2026-26953 Pi-hole Web Interface has Stored HTML Injection via X-Forwarded-For Header in Active Sessions Table pi-holeweb Medium 5.4 2026-02-19 22:50:08 Deep Dive
CVE-2026-26952 Pi-hole Web Interface has Stored HTML Injection via Local DNS Records (CNAME/Hosts) in data-tag Attribute pi-holeweb Medium 5.4 2026-02-19 22:43:58 Deep Dive
CVE-2025-9208 Stored-XSS vulnerability discovered in OpenText WSM Management Server. OpenText™Web Site Management Server--2026-02-19 22:37:19 Deep Dive
CVE-2025-13671 Cross Site request forgery vulnerability discovered in OpenText WSM Management Server. OpenText™Web Site Management Server--2026-02-19 22:36:49 Deep Dive
CVE-2025-13672 Reflected Cross-Site Scripting discovered in OpenText WSM Management Server. OpenText™Web Site Management Server--2026-02-19 22:36:33 Deep Dive
CVE-2026-2274 Arbitrary File Read and SSRF in Google AppSheet AppSheetAppSheet Web (Main Server)--2026-02-19 15:21:38 Deep Dive
CVE-2026-27066 WordPress Live sales notification for WooCommerce plugin <= 2.3.60 - Broken Access Control vulnerability PI Web SolutionLive sales notification for WooCommerce Medium 5.3 2026-02-19 08:27:11 Deep Dive
CVE-2025-13113 Web Accessibility by accessiBe <= 2.11 - Unauthenticated Sensitive Information Exposure accessibewpWeb Accessibility by accessiBe Medium 5.3 2026-02-19 03:25:18 Deep Dive