| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-14887 | twinklesmtp – Email Service Provider For WordPress <= 1.03 - Authenticated (Administrator+) Stored Cross-Site Scripting via Sender Settings | wpcommerz | twinklesmtp – Email Service Provider For WordPress | Medium | 4.4 | 2026-01-07 06:35:59 | Deep Dive |
| CVE-2025-64125 | Nuvation Energy nCloud Client-to-Client Communication | Nuvation Energy | nCloud VPN Service | 高危 | - | 2026-01-03 00:21:20 | Deep Dive |
| CVE-2025-59387 | MARS (Multi-Application Recovery Service) | QNAP Systems Inc. | MARS (Multi-Application Recovery Service) | 超危 | - | 2026-01-02 15:19:30 | Deep Dive |
| CVE-2025-62113 | WordPress Co-marquage service-public.fr plugin <= 0.5.77 - Cross Site Request Forgery (CSRF) vulnerability | emendo_seb | Co-marquage service-public.fr | Medium | 4.3 | 2025-12-31 16:28:24 | Deep Dive |
| CVE-2024-58315 | Tosibox Key Service 3.3.0 Local Privilege Escalation via Unquoted Service Path | Tosibox Oy | Tosibox Key Service | High | 7.8 | 2025-12-30 22:41:44 | Deep Dive |
| CVE-2018-25146 | Microhard Systems IPn4G 1.1.0 Service Control Denial of Service | Microhard Systems | Microhard Systems 3G/4G Cellular Ethernet and Serial Gateway Service Control DoS | High | 8.1 | 2025-12-24 19:27:50 | Deep Dive |
| CVE-2023-53965 | SOUND4 Server Service 4.1.102 Local Privilege Escalation via Unquoted Service Path | SOUND4 Ltd. | SOUND4 Server Service | High | 8.4 | 2025-12-22 21:35:30 | Deep Dive |
| CVE-2023-53958 | LDAP Tool Box Self Service Password 1.5.2 Account Takeover via HTTP Host Header | ltb-project | LDAP Tool Box Self Service Password | High | 7.5 | 2025-12-19 21:05:53 | Deep Dive |
| CVE-2025-64663 | Custom Question Answering Elevation of Privilege Vulnerability | Microsoft | Azure Cognitive Service for Language | Critical | 9.9 | 2025-12-18 22:02:05 | Deep Dive |
| CVE-2025-53710 | Network boundaries not respected in certain Foundry namespaces. | Palantir | com.palantir.compute:compute-service | High | 7.5 | 2025-12-18 21:05:52 | Deep Dive |
| CVE-2025-14523 | Libsoup: libsoup: duplicate host header handling causes host-parsing discrepancy (first- vs last-value wins) | Red Hat | Red Hat Enterprise Linux 10 | High | 8.2 | 2025-12-11 12:30:59 | Deep Dive |
| CVE-2021-47710 | COMMAX Smart Home Ruvie CCTV Bridge DVR Service RTSP Credentials Disclosure | COMMAX Co., Ltd. | Smart Home Ruvie CCTV Bridge DVR Service | - | - | 2025-12-09 20:40:08 | Deep Dive |
| CVE-2021-47709 | COMMAX Smart Home Ruvie CCTV Bridge DVR Service Config Write / DoS | COMMAX Co., Ltd. | Smart Home Ruvie CCTV Bridge DVR Service | - | - | 2025-12-09 20:39:52 | Deep Dive |
| CVE-2025-54100 | PowerShell Remote Code Execution Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:56:10 | Deep Dive |
| CVE-2025-64678 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | Microsoft | Windows 10 Version 1607 | High | 8.8 | 2025-12-09 17:56:08 | Deep Dive |
| CVE-2025-62474 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:55:54 | Deep Dive |
| CVE-2025-62455 | Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:55:48 | Deep Dive |
| CVE-2025-62571 | Windows Installer Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:55:42 | Deep Dive |
| CVE-2025-62549 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | Microsoft | Windows 10 Version 1607 | High | 8.8 | 2025-12-09 17:55:39 | Deep Dive |
| CVE-2025-62472 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:55:38 | Deep Dive |