| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-54063 | Cherry Studio One-click Remote Code Execution Vulnerability through Custom URL Handling | CherryHQ | cherry-studio | High | 8.0 | 2025-08-11 17:59:41 | Deep Dive |
| CVE-2025-7427 | Uncontrolled Search Path Element in Arm Development Studio before 2025 | Arm | Development Studio | 中危 | - | 2025-07-22 09:52:57 | Deep Dive |
| CVE-2025-41459 | Insecure authentication due to missing bruteforce protection and runtime manipulation in Two App Studio Journey 5.5.6 for iOS | Two App Studio | Journey | High | 7.8 | 2025-07-21 11:01:29 | Deep Dive |
| CVE-2025-41458 | Insecure data storage vulnerability in Two App Studio Journey v5.5.9 for iOS | Two App Studio | Journey | Medium | 5.5 | 2025-07-21 11:01:14 | Deep Dive |
| CVE-2025-34123 | VideoCharge Studio 2.12.3.685 SEH Buffer Overflow via .VSC File | VideoCharge Software | Studio | - | - | 2025-07-16 21:07:51 | Deep Dive |
| CVE-2025-34300 | Sawtooth Software Lighthouse Studio < 9.16.14 Pre-Authentication RCE | Sawtooth Software | Lighthouse Studio | - | - | 2025-07-16 12:57:27 | Deep Dive |
| CVE-2025-1384 | Least Privilege Violation Vulnerability in the communications functions of NJ/NX-series Machine Automation Controllers | OMRON Corporation | Machine Automation Controller NJ-series | High | 7.0 | 2025-07-13 23:42:10 | Deep Dive |
| CVE-2025-49739 | Visual Studio Elevation of Privilege Vulnerability | Microsoft | Microsoft Visual Studio 2015 Update 3 | High | 8.8 | 2025-07-08 16:58:16 | Deep Dive |
| CVE-2025-49714 | Visual Studio Code Python Extension Remote Code Execution Vulnerability | Microsoft | Python extension for Visual Studio Code | High | 7.8 | 2025-07-08 16:58:08 | Deep Dive |
| CVE-2025-34089 | Remote for Mac Unauthenticated Remote Code Execution via AppleScript Injection | Aexol Studio | Remote for Mac | - | - | 2025-07-03 19:47:00 | Deep Dive |
| CVE-2025-52810 | WordPress Katerio - Magazine theme <= 1.5.1 - Local File Inclusion Vulnerability | TMRW-studio | Katerio - Magazine | High | 8.1 | 2025-06-27 11:52:21 | Deep Dive |
| CVE-2025-47959 | Visual Studio Remote Code Execution Vulnerability | Microsoft | Microsoft Visual Studio 2022 version 17.10 | High | 7.1 | 2025-06-13 01:10:45 | Deep Dive |
| CVE-2025-30399 | .NET and Visual Studio Remote Code Execution Vulnerability | Microsoft | .NET 8.0 | High | 7.5 | 2025-06-13 01:08:00 | Deep Dive |
| CVE-2025-40592 | Mendix Studio Pro 路径遍历漏洞 | Siemens | Mendix Studio Pro 10 | Medium | 6.1 | 2025-06-12 08:05:09 | Deep Dive |
| CVE-2025-4944 | LA-Studio Element Kit for Elementor <= 1.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Compare and Google Maps Widgets | choijun | LA-Studio Element Kit for Elementor | Medium | 6.4 | 2025-05-30 11:15:10 | Deep Dive |
| CVE-2025-4943 | LA-Studio Element Kit for Elementor <= 1.5.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via data-lakit-element-link Parameter | choijun | LA-Studio Element Kit for Elementor | Medium | 6.4 | 2025-05-30 06:42:49 | Deep Dive |
| CVE-2025-5173 | HumanSignal label-studio-ml-backend PT File neural_nets.py load deserialization | HumanSignal | label-studio-ml-backend | Medium | 5.3 | 2025-05-26 06:31:05 | Deep Dive |
| CVE-2025-4379 | Reflected XSS in DobryCMS | Studio Fabryka | DobryCMS | - | - | 2025-05-23 10:00:10 | Deep Dive |
| CVE-2024-6712 | MapFig Studio <= 0.2.1 - Stored XSS via CSRF | Unknown | MapFig Studio | - | - | 2025-05-15 20:07:09 | Deep Dive |
| CVE-2025-47783 | label-studio vulnerable to Cross-Site Scripting (Reflected) via the label_config parameter. | HumanSignal | label-studio | - | - | 2025-05-14 23:01:17 | Deep Dive |