Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 4525 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-12684 URL Shortify < 1.11.3 - Reflected XSS UnknownURL Shortify--2025-12-15 06:00:08 Deep Dive
CVE-2025-13355 URL Shortify < 1.11.4 - Reflected XSS UnknownURL Shortify--2025-12-15 06:00:08 Deep Dive
CVE-2025-11363 Royal Elementor Addons and Templates < 1.7.1037 - Unauthenticated Media File Upload UnknownRoyal Addons for Elementor--2025-12-15 06:00:03 Deep Dive
CVE-2025-12696 HelloLeads CRM Form Shortcode <= 1.0 - Unauthenticated Settings Reset UnknownHelloLeads CRM Form Shortcode--2025-12-14 06:00:03 Deep Dive
CVE-2025-9116 WPS Visitor Counter Plugin <= 1.4.8 - Reflected XSS via $_SERVER['REQUEST_URI'] UnknownWPS Visitor Counter--2025-12-13 06:00:08 Deep Dive
CVE-2024-14010 Typora 1.7.4 OS Command Injection via Export PDF Preferences UnknownTypora Critical 9.8 2025-12-12 19:55:04 Deep Dive
CVE-2025-12835 WooMulti <= 1.7 - Subscriber+ Arbitrary File Deletion UnknownWooMulti--2025-12-12 10:24:14 Deep Dive
CVE-2025-12841 Bookit < 2.5.1 – Unauthenticated Settings Update UnknownBookit--2025-12-12 10:17:09 Deep Dive
CVE-2025-10684 Construction Light < 1.6.8 - Subscriber+ Arbitrary Plugin Activation UnknownConstruction Light--2025-12-12 06:00:02 Deep Dive
CVE-2025-13073 HandL UTM Grabber / Tracker < 2.8.1 - Reflected XSS via handl_landing_page UnknownHandL UTM Grabber / Tracker--2025-12-10 06:00:13 Deep Dive
CVE-2025-13072 HandL UTM Grabber / Tracker < 2.8.1 - Reflected XSS via utm_source UnknownHandL UTM Grabber / Tracker--2025-12-10 06:00:11 Deep Dive
CVE-2025-13071 Custom Admin Menu <= 1.0.0 - Reflected XSS UnknownCustom Admin Menu--2025-12-09 06:00:09 Deep Dive
CVE-2025-13070 CSV to SortTable <= 4.2 - Contributor+ LFI UnknownCSV to SortTable--2025-12-09 06:00:08 Deep Dive
CVE-2025-13031 WPeMatico RSS Feed Fetcher < 2.8.13 - Contributor+ Stored XSS UnknownWPeMatico RSS Feed Fetcher--2025-12-09 06:00:08 Deep Dive
CVE-2025-66571 UNA CMS 9.0.0-RC1 - 14.0.0-RC4 PHP Object Injection UnknownUNA CMS--2025-12-04 20:43:52 Deep Dive
CVE-2025-12954 Timetable and Event Schedule by MotoPress < 2.4.16 - Contributor+ Event Disclosure via IDOR UnknownTimetable and Event Schedule by MotoPress--2025-12-03 06:00:06 Deep Dive
CVE-2025-12630 Upload.am File Hosting VPN < 1.0.1 - Contributor+ Arbitrary Option Disclosure UnknownUpload.am--2025-12-02 15:57:41 Deep Dive
CVE-2025-13001 Donation <= 1.0 - Admin+ SQLi Unknowndonation--2025-12-02 06:00:08 Deep Dive
CVE-2025-13000 DB Access <= 0.8.7 - Subscriber+ SQLi Unknowndb-access--2025-12-02 06:00:07 Deep Dive
CVE-2025-12061 Tax Service Electronic HDM < 1.2.1 - Unauthenticated Arbitrary SQL Execution UnknownTAX SERVICE Electronic HDM--2025-11-26 06:00:08 Deep Dive