| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-24843 | Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Storage of Sensitive Data in a Mechanism without Access Control | Dario Health | USB-C Blood Glucose Monitoring System Starter Kit Android Applications | Medium | 5.1 | 2025-02-28 16:56:12 | Deep Dive |
| CVE-2025-23405 | Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Improper Output Neutralization For Logs | Dario Health | USB-C Blood Glucose Monitoring System Starter Kit Android Applications | Medium | 5.3 | 2025-02-28 16:54:02 | Deep Dive |
| CVE-2025-20060 | Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application Exposure of Private Personal Information to an Unauthorized Actor | Dario Health | USB-C Blood Glucose Monitoring System Starter Kit Android Applications | High | 7.5 | 2025-02-28 16:51:20 | Deep Dive |
| CVE-2024-13217 | Jeg Elementor Kit <= 2.6.11 - Authenticated (Contributor+) Sensitive Information Exposure via Countdown and Off-Canvas | jegtheme | Jeg Kit for Elementor – Powerful Addons for Elementor, Widgets & Templates for WordPress | Medium | 4.3 | 2025-02-27 11:13:33 | Deep Dive |
| CVE-2025-21194 | Microsoft Surface Security Feature Bypass Vulnerability | Microsoft | Microsoft Surface Go | High | 7.1 | 2025-02-11 17:58:26 | Deep Dive |
| CVE-2025-24685 | WordPress Morkva UA Shipping plugin <= 1.0.18 - Local File Inclusion vulnerability | Ihor Kit | Morkva UA Shipping | High | 8.1 | 2025-01-27 13:59:50 | Deep Dive |
| CVE-2025-24584 | WordPress Ultimate Store Kit Elementor Addons plugin <= 2.3.0 - Broken Access Control vulnerability | bdthemes | Ultimate Store Kit Elementor Addons | Medium | 4.3 | 2025-01-27 13:59:49 | Deep Dive |
| CVE-2025-24612 | WordPress Shipping for Nova Poshta plugin <= 1.19.6 - SQL Injection vulnerability | Ihor Kit | Shipping for Nova Poshta | Critical | 9.3 | 2025-01-27 13:59:49 | Deep Dive |
| CVE-2025-24725 | WordPress Thim Elementor Kit Plugin <= 1.2.8 - Broken Access Control vulnerability | ThimPress | Thim Elementor Kit | Medium | 4.3 | 2025-01-24 17:25:16 | Deep Dive |
| CVE-2024-9499 | Uncontrolled search path can lead to DLL hijacking in USBXpress Win 98SE Dev Kit installer | silabs.com | USBXpress Win 98SE Dev Kit | High | 8.6 | 2025-01-24 14:39:51 | Deep Dive |
| CVE-2024-9496 | Uncontrolled search path can lead to DLL hijacking in USBXpress Dev Kit installer | silabs.com | USBXpress Dev Kit | High | 8.6 | 2025-01-24 14:38:14 | Deep Dive |
| CVE-2024-13275 | Security Kit - Less critical - Denial of Service - SA-CONTRIB-2024-039 | Drupal | Security Kit | 中危 | - | 2025-01-09 19:27:30 | Deep Dive |
| CVE-2025-22312 | WordPress Thim Elementor Kit plugin <= 1.2.9 - Cross Site Scripting (XSS) vulnerability | ThimPress | Thim Elementor Kit | Medium | 6.5 | 2025-01-07 10:48:55 | Deep Dive |
| CVE-2024-12697 | real.Kit <= 5.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | realmaster-1 | real.Kit | Medium | 6.4 | 2024-12-21 07:03:02 | Deep Dive |
| CVE-2023-41875 | WordPress WP Directory Kit plugin <= 1.2.6 - Broken Access Control vulnerability | WPDirectoryKit | WP Directory Kit | Medium | 5.3 | 2024-12-13 14:24:24 | Deep Dive |
| CVE-2024-54260 | WordPress News Kit Elementor Addons plugin <= 1.4.2 - Cross Site Scripting (XSS) vulnerability | blazethemes | News Kit Elementor Addons | Medium | 6.5 | 2024-12-09 11:32:12 | Deep Dive |
| CVE-2023-50884 | WordPress LA-Studio Element Kit for Elementor plugin <= 1.1.5 - Broken Access Control vulnerability | LA-Studio | LA-Studio Element Kit for Elementor | 中危 | - | 2024-12-09 11:29:56 | Deep Dive |
| CVE-2024-10787 | LA-Studio Element Kit for Elementor <= 1.4.4 - Authenticated (Contributor+) Post Disclosure | choijun | LA-Studio Element Kit for Elementor | Medium | 4.3 | 2024-12-04 08:22:46 | Deep Dive |
| CVE-2024-53774 | WordPress Sparkle Elementor Kit plugin <= 2.0.9 - Cross Site Scripting (XSS) vulnerability | Jakub Glos | Sparkle Elementor Kit | Medium | 6.5 | 2024-11-30 21:17:45 | Deep Dive |
| CVE-2024-10308 | Jeg Elementor Kit <= 2.6.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via JKit - Countdown Widget | jegtheme | Jeg Kit for Elementor – Powerful Addons for Elementor, Widgets & Templates for WordPress | Medium | 6.4 | 2024-11-26 11:04:31 | Deep Dive |