| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-14501 | Sante PACS Server HTTP Content-Length Header Handling NULL Pointer Dereference Denial-of-Service Vulnerability | Sante | PACS Server | - | - | 2025-12-23 21:18:40 | Deep Dive |
| CVE-2023-53965 | SOUND4 Server Service 4.1.102 Local Privilege Escalation via Unquoted Service Path | SOUND4 Ltd. | SOUND4 Server Service | High | 8.4 | 2025-12-22 21:35:30 | Deep Dive |
| CVE-2025-14847 | Zlib compressed protocol header length confusion may allow memory read | MongoDB Inc. | MongoDB Server | High | 7.5 | 2025-12-19 11:00:22 | Deep Dive |
| CVE-2025-13008 | Session Token Disclosure in M-Files Web | M-Files Corporation | M-Files Server | - | - | 2025-12-19 07:04:20 | Deep Dive |
| CVE-2025-14267 | Unintended temporary cached data included in a structure only copy intended to be empty of data | M-Files Corporation | M-Files Server | - | - | 2025-12-19 06:15:10 | Deep Dive |
| CVE-2025-62004 | BullWall Server Intrusion Protection (SIP) initialization race condition | BullWall | Server Intrusion Protection | High | 7.5 | 2025-12-18 20:36:13 | Deep Dive |
| CVE-2025-62003 | BullWall Server Intrusion Protection RDP MFA connection delay | BullWall | Server Intrusion Protection | High | 7.5 | 2025-12-18 20:35:52 | Deep Dive |
| CVE-2025-14318 | Improper access validation in M-Files Server | M-Files Corporation | M-Files Server | - | - | 2025-12-18 07:32:34 | Deep Dive |
| CVE-2025-68150 | Parse Server has Server-Side Request Forgery (SSRF) in Instagram OAuth Adapter | parse-community | parse-server | - | - | 2025-12-16 18:15:09 | Deep Dive |
| CVE-2025-46296 | FileMaker Server 安全漏洞 | Claris | FileMaker Server | - | - | 2025-12-16 18:07:38 | Deep Dive |
| CVE-2025-46295 | FileMaker Server 安全漏洞 | Claris | FileMaker Server | - | - | 2025-12-16 18:07:37 | Deep Dive |
| CVE-2025-46294 | FileMaker Server 安全漏洞 | Claris | FileMaker Server | - | - | 2025-12-16 18:07:37 | Deep Dive |
| CVE-2025-65076 | Arbitrary File Read and Delete via Path Traversal in WaveStore Server | WaveStore | WaveStore Server | - | - | 2025-12-16 12:25:25 | Deep Dive |
| CVE-2025-65075 | Arbitrary File Read and Delete via Path Traversal in WaveStore Server | WaveStore | WaveStore Server | - | - | 2025-12-16 12:25:18 | Deep Dive |
| CVE-2025-65074 | OS Command Injection via Path Traversal in WaveStore Server | WaveStore | WaveStore Server | - | - | 2025-12-16 12:25:16 | Deep Dive |
| CVE-2025-68115 | Parse Server vulnerable to Cross-Site Scripting (XSS) via Unescaped Mustache Template Variables | parse-community | parse-server | - | - | 2025-12-16 00:56:23 | Deep Dive |
| CVE-2023-53886 | Xlight FTP Server 3.9.3.6 Stack Buffer Overflow Vulnerability via Execute Program | Xlightftpd | Xlight FTP Server | - | - | 2025-12-15 20:28:22 | Deep Dive |
| CVE-2025-14711 | FantasticLBP Hotels Server hotelList.php sql injection | FantasticLBP | Hotels Server | High | 7.3 | 2025-12-15 08:02:06 | Deep Dive |
| CVE-2025-14710 | FantasticLBP Hotels Server OrderList.php sql injection | FantasticLBP | Hotels Server | High | 7.3 | 2025-12-15 07:32:06 | Deep Dive |
| CVE-2024-58299 | PCMan FTP Server 2.0 Remote Buffer Overflow via 'pwd' Command | PCMan | FTP Server | Critical | 9.8 | 2025-12-12 19:56:39 | Deep Dive |