| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-53966 | Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) | Adobe | Adobe Experience Manager | Medium | 5.4 | 2025-02-04 23:40:11 | Deep Dive |
| CVE-2024-53964 | Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) | Adobe | Adobe Experience Manager | Medium | 5.4 | 2025-02-04 23:40:07 | Deep Dive |
| CVE-2024-53965 | Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) | Adobe | Adobe Experience Manager | Medium | 5.4 | 2025-02-04 23:39:54 | Deep Dive |
| CVE-2025-25039 | Authenticated Remote Command Injection in HPE Aruba Networking ClearPass Policy Manager Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | Medium | 4.7 | 2025-02-04 18:13:23 | Deep Dive |
| CVE-2025-23060 | Sensitive Data Exposure Vulnerability in HPE Aruba Networking ClearPass Policy Manager (CPPM) | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | Medium | 6.6 | 2025-02-04 18:11:41 | Deep Dive |
| CVE-2025-23059 | Sensitive Information Disclosure in HPE Aruba Networking ClearPass Policy Manager | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | Medium | 6.8 | 2025-02-04 18:10:22 | Deep Dive |
| CVE-2025-23058 | Authenticated Broken Access Control Vulnerability in ClearPass Policy Manager Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | High | 8.8 | 2025-02-04 18:07:57 | Deep Dive |
| CVE-2024-11132 | Eventer <= 3.9.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | imithemes | Eventer - WordPress Event & Booking Manager Plugin | Medium | 6.4 | 2025-02-03 19:22:49 | Deep Dive |
| CVE-2024-11134 | Eventer <= 3.9.9 - Missing Authorization to Authenticated (Subscriber+) Bookings Export | imithemes | Eventer - WordPress Event & Booking Manager Plugin | Medium | 4.3 | 2025-02-03 19:22:49 | Deep Dive |
| CVE-2024-11133 | Eventer <= 3.9.9.5 - Missing Authorization to Unauthenticated Event Ticket Download | imithemes | Eventer - WordPress Event & Booking Manager Plugin | Medium | 5.3 | 2025-02-03 19:22:44 | Deep Dive |
| CVE-2025-24661 | WordPress Taxi Booking Manager for WooCommerce plugin <= 1.1.8 - PHP Object Injection vulnerability | magepeopleteam | Taxi Booking Manager for WooCommerce | High | 8.8 | 2025-02-03 14:23:54 | Deep Dive |
| CVE-2025-22679 | WordPress Job Board Manager Plugin <= 2.1.61 - Reflected Cross Site Scripting (XSS) vulnerability | PickPlugins | Job Board Manager | High | 7.1 | 2025-02-03 14:23:51 | Deep Dive |
| CVE-2025-22260 | WordPress Meta Tag Manager plugin <= 3.1 - Broken Access Control vulnerability | Marcus (aka @msykes) | Meta Tag Manager | Medium | 4.3 | 2025-02-03 14:23:50 | Deep Dive |
| CVE-2024-57967 | CyberArk Privileged Access Manager Self-Hosted 安全漏洞 | CyberArk | Privileged Access Manager | Medium | 4.2 | 2025-02-03 00:00:00 | Deep Dive |
| CVE-2024-54840 | CyberArk Privileged Access Manager Self-Hosted 安全漏洞 | CyberArk | Privileged Access Manager | Medium | 4.2 | 2025-02-03 00:00:00 | Deep Dive |
| CVE-2024-13343 | WooCommerce Customers Manager <= 31.3 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation | Vanquish | WooCommerce Customers Manager | High | 8.8 | 2025-02-01 03:21:11 | Deep Dive |
| CVE-2024-49349 | IBM Financial Transaction Manager cross-site scripting | IBM | Financial Transaction Manager for SWIFT Services for Multiplatforms | Medium | 6.1 | 2025-01-31 16:14:23 | Deep Dive |
| CVE-2024-49339 | IBM Financial Transaction Manager cross-site scripting | IBM | Financial Transaction Manager for SWIFT Services for Multiplatforms | Medium | 6.4 | 2025-01-31 16:13:40 | Deep Dive |
| CVE-2025-22720 | WordPress WpRently | WordPress plugin plugin <= 2.2.1 - Broken Access Control vulnerability | magepeopleteam | Booking and Rental Manager | Medium | 5.8 | 2025-01-31 08:23:55 | Deep Dive |
| CVE-2024-13216 | HT Event – WordPress Event Manager Plugin for Elementor <= 1.4.7 - Authenticated (Contributor+) Sensitive Information Exposure via HT Event: Sponsor | devitemsllc | HT Event – WordPress Event Manager Plugin for Elementor | Medium | 4.3 | 2025-01-31 05:22:33 | Deep Dive |