| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-9948 | Chat by Chatwee <= 2.1.3 - Cross-Site Request Forgery to Settings Update | paulq | Chat by Chatwee | Medium | 4.3 | 2025-09-30 03:35:31 | Deep Dive |
| CVE-2025-59426 | lobe-chat has an Open Redirect | lobehub | lobe-chat | Medium | 4.3 | 2025-09-25 14:00:10 | Deep Dive |
| CVE-2025-57912 | WordPress Dialogity Free Live Chat plugin <= 1.0.3 - Cross Site Scripting (XSS) vulnerability | dialogity | Dialogity Free Live Chat | Medium | 5.9 | 2025-09-22 18:25:19 | Deep Dive |
| CVE-2025-58666 | WordPress Website Chat Button: Kommo integration Plugin <= 1.3.1 - Broken Access Control Vulnerability | Kommo | Website Chat Button: Kommo integration | Medium | 4.3 | 2025-09-22 18:22:58 | Deep Dive |
| CVE-2025-58688 | WordPress Casengo Live Chat Support Plugin <= 2.1.4 - Cross Site Request Forgery (CSRF) Vulnerability | Casengo | Casengo Live Chat Support | High | 7.1 | 2025-09-22 18:22:42 | Deep Dive |
| CVE-2025-59417 | Lobe Chat Desktop Vulnerable to Remote Code Execution via XSS in Chat Messages | lobehub | lobe-chat | - | - | 2025-09-18 14:38:55 | Deep Dive |
| CVE-2025-58626 | WordPress RumbleTalk Live Group Chat Plugin <= 6.3.5 - Cross Site Scripting (XSS) Vulnerability | RumbleTalk | RumbleTalk Live Group Chat | Medium | 6.5 | 2025-09-03 14:36:53 | Deep Dive |
| CVE-2025-7974 | rocket.chat Incorrect Authorization Information Disclosure Vulnerability | rocket.chat | rocket.chat | 低危 | - | 2025-09-02 19:46:21 | Deep Dive |
| CVE-2025-53787 | Microsoft 365 Copilot BizChat Information Disclosure Vulnerability | Microsoft | Microsoft 365 Copilot's Business Chat | High | 8.2 | 2025-08-07 21:01:04 | Deep Dive |
| CVE-2025-53774 | Microsoft 365 Copilot BizChat Information Disclosure Vulnerability | Microsoft | Microsoft 365 Copilot's Business Chat | Medium | 6.5 | 2025-08-07 21:01:03 | Deep Dive |
| CVE-2025-8164 | code-projects Public Chat Room send_message.php sql injection | code-projects | Public Chat Room | Medium | 6.3 | 2025-07-25 18:02:06 | Deep Dive |
| CVE-2025-7951 | code-projects Public Chat Room send_message.php cross site scripting | code-projects | Public Chat Room | Low | 3.5 | 2025-07-22 02:32:05 | Deep Dive |
| CVE-2025-7950 | code-projects Public Chat Room login.php sql injection | code-projects | Public Chat Room | High | 7.3 | 2025-07-22 02:02:05 | Deep Dive |
| CVE-2025-34127 | Achat v0.150 SEH Buffer Overflow via UDP | Achat Software | Achat Chat Server | - | - | 2025-07-16 21:10:22 | Deep Dive |
| CVE-2025-30949 | WordPress Site Chat on Telegram plugin <= 1.0.4 - PHP Object Injection Vulnerability | Guru Team | Site Chat on Telegram | Critical | 9.8 | 2025-07-16 11:28:09 | Deep Dive |
| CVE-2025-7511 | code-projects Chat System update_account.php sql injection | code-projects | Chat System | Medium | 6.3 | 2025-07-13 01:32:06 | Deep Dive |
| CVE-2025-7452 | kone-net go-chat Endpoint file_controller.go GetFile path traversal | kone-net | go-chat | Medium | 6.3 | 2025-07-11 17:32:05 | Deep Dive |
| CVE-2025-7189 | code-projects Chat System send_message.php sql injection | code-projects | Chat System | Medium | 6.3 | 2025-07-08 18:02:06 | Deep Dive |
| CVE-2025-7188 | code-projects Chat System addmember.php sql injection | code-projects | Chat System | Medium | 6.3 | 2025-07-08 17:32:06 | Deep Dive |
| CVE-2025-7187 | code-projects Chat System fetch_member.php sql injection | code-projects | Chat System | Medium | 6.3 | 2025-07-08 17:02:06 | Deep Dive |