| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2019-25215 | ARI-Adminer <= 1.1.14 - Missing Authorization and No Direct File Access Restrictions | arisoft | ARI Adminer – WordPress Database Manager | High | 7.3 | 2024-10-16 06:43:34 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-21251 | Oracle Database Server 安全漏洞 | Oracle Corporation | Oracle Database Server | Low | 3.1 | 2024-10-15 19:52:52 | Deep Dive |
| CVE-2024-21242 | Oracle Database Server 安全漏洞 | Oracle Corporation | Oracle Database Server | Low | 3.5 | 2024-10-15 19:52:49 | Deep Dive |
| CVE-2024-21233 | Oracle Database Server 安全漏洞 | Oracle Corporation | Oracle Database Server | Medium | 4.3 | 2024-10-15 19:52:46 | Deep Dive |
| CVE-2024-9985 | Ragic Enterprise Cloud Database - Arbitrary File Upload | Ragic | Enterprise Cloud Database | Critical | 10.0 | 2024-10-15 08:20:36 | Deep Dive |
| CVE-2024-9984 | Ragic Enterprise Cloud Database - Missing Authentication | Ragic | Enterprise Cloud Database | Critical | 9.8 | 2024-10-15 08:15:31 | Deep Dive |
| CVE-2024-9983 | Ragic Enterprise Cloud Database - Arbitrary File Read through Path Traversal | Ragic | Enterprise Cloud Database | High | 7.5 | 2024-10-15 08:12:17 | Deep Dive |
| CVE-2024-5309 | Form Vibes – Database Manager for Forms <= 1.4.12 - Missing Authorization in Multiple Functions | wpvibes | Form Vibes – Database Manager for Forms | Medium | 5.4 | 2024-09-05 08:30:09 | Deep Dive |
| CVE-2024-43141 | WordPress Participants Database plugin <= 2.5.9.2 - PHP Object Injection vulnerability | Roland Barker, xnau webdesign | Participants Database | Critical | 9.8 | 2024-08-13 11:38:27 | Deep Dive |
| CVE-2024-21184 | Oracle Database Server 安全漏洞 | Oracle Corporation | Database - Enterprise Edition | High | 7.2 | 2024-07-16 22:40:12 | Deep Dive |
| CVE-2024-21174 | Oracle Database Server 安全漏洞 | Oracle Corporation | Database - Enterprise Edition | Low | 3.1 | 2024-07-16 22:40:08 | Deep Dive |
| CVE-2024-21126 | Oracle Database Server 安全漏洞 | Oracle Corporation | Database - Enterprise Edition | Medium | 5.8 | 2024-07-16 22:39:52 | Deep Dive |
| CVE-2024-21123 | Oracle Database Server 安全漏洞 | Oracle Corporation | Database - Enterprise Edition | Low | 2.3 | 2024-07-16 22:39:45 | Deep Dive |
| CVE-2024-5325 | Form Vibes <= 1.4.10 - Authenticated (Subscriber+) SQL Injection via fv_export_data | wpvibes | Form Vibes – Database Manager for Forms | High | 8.8 | 2024-07-12 12:47:02 | Deep Dive |
| CVE-2024-37498 | WordPress Tablesome plugin <= 1.0.33 - Sensitive Data Exposure via API vulnerability | Pauple | Table & Contact Form 7 Database – Tablesome | Medium | 5.3 | 2024-07-10 17:47:56 | Deep Dive |
| CVE-2024-35712 | WordPress Database Cleaner: Clean, Optimize & Repair plugin <= 1.0.5 - Arbitrary File Read vulnerability | Jordy Meow | Database Cleaner | Medium | 4.9 | 2024-06-10 15:53:53 | Deep Dive |
| CVE-2024-3715 | Database for Contact Form 7, WPforms, Elementor forms <= 1.3.8 - Unauthenticated Stored Cross-Site Scripting | crmperks | Database for Contact Form 7, WPforms, Elementor forms | High | 7.2 | 2024-05-02 16:52:31 | Deep Dive |
| CVE-2024-3870 | Contact Form 7 Database Addon – CFDB7 <= 1.2.6.8 - Unauthenticated Sensitive Information Exposure | arshidkv12 | Database Addon for Contact Form 7 – CFDB7 | Medium | 5.3 | 2024-05-02 16:52:26 | Deep Dive |
| CVE-2023-41864 | WordPress PeproDev CF7 Database plugin <= 1.8.0 - Cross Site Request Forgery (CSRF) vulnerability | Pepro Dev. Group | PeproDev CF7 Database | Medium | 4.3 | 2024-04-18 08:12:49 | Deep Dive |