| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-40643 | Stored Cross-Site Scripting (XSS) in Energy CRM by Status Tracker | Status Tracker | Energy CRM | - | - | 2025-10-23 10:46:10 | Deep Dive |
| CVE-2025-60209 | WordPress Connector for Gravity Forms and Google Sheets plugin <= 1.2.6 - PHP Object Injection vulnerability | CRM Perks | Connector for Gravity Forms and Google Sheets | - | - | 2025-10-22 14:32:43 | Deep Dive |
| CVE-2025-60151 | WordPress WP Gravity Forms HubSpot Plugin <= 1.2.5 - Open Redirection Vulnerability | CRM Perks | WP Gravity Forms HubSpot | - | - | 2025-10-22 14:32:42 | Deep Dive |
| CVE-2025-40640 | Stored Cross-Site Scripting (XSS) in Energy CRM by Status Tracker | Status Tracker | Energy CRM | - | - | 2025-10-10 08:19:34 | Deep Dive |
| CVE-2025-10746 | Integrate Dynamics 365 CRM <= 1.0.9 - Missing Authorization | cyberlord92 | Integrate Dynamics 365 CRM | Medium | 6.5 | 2025-10-04 02:24:37 | Deep Dive |
| CVE-2025-40991 | Stored XSS in Creativeitem Ekushey CRM | Creativeitem | Ekushey CRM | 中危 | - | 2025-10-02 10:45:43 | Deep Dive |
| CVE-2025-40990 | Stored XSS in Creativeitem Ekushey CRM | Creativeitem | Ekushey CRM | 中危 | - | 2025-10-02 10:42:05 | Deep Dive |
| CVE-2025-40989 | Stored XSS in Creativeitem Ekushey CRM | Creativeitem | Ekushey CRM | 中危 | - | 2025-10-02 10:40:04 | Deep Dive |
| CVE-2025-40646 | Multiple vulnerabilities in Energy CRM by Status Tracker | Status Tracker | Energy CRM | - | - | 2025-10-02 09:42:30 | Deep Dive |
| CVE-2025-10346 | HTML injection in Perfex CRM | Perfex CRM | Perfex CRM | - | - | 2025-09-29 08:43:22 | Deep Dive |
| CVE-2025-10345 | HTML injection in Perfex CRM | Perfex CRM | Perfex CRM | - | - | 2025-09-29 08:42:22 | Deep Dive |
| CVE-2025-10344 | HTML injection in Perfex CRM | Perfex CRM | Perfex CRM | - | - | 2025-09-29 08:41:39 | Deep Dive |
| CVE-2025-10343 | HTML injection in Perfex CRM | Perfex CRM | Perfex CRM | - | - | 2025-09-29 08:39:02 | Deep Dive |
| CVE-2025-10342 | HTML injection in Perfex CRM | Perfex CRM | Perfex CRM | - | - | 2025-09-29 08:38:13 | Deep Dive |
| CVE-2025-10341 | HTML injection in Perfex CRM | Perfex CRM | Perfex CRM | - | - | 2025-09-29 08:36:57 | Deep Dive |
| CVE-2025-11053 | PHPGurukul Small CRM forgot-password.php sql injection | PHPGurukul | Small CRM | High | 7.3 | 2025-09-27 08:32:07 | Deep Dive |
| CVE-2025-60169 | WordPress W3SCloud Contact Form 7 to Zoho CRM plugin <= 3.2 - Cross Site Request Forgery (CSRF) vulnerability | W3S Cloud Technology | W3SCloud Contact Form 7 to Zoho CRM | High | 7.1 | 2025-09-26 08:32:05 | Deep Dive |
| CVE-2025-58006 | WordPress WP Gravity Forms Keap/Infusionsoft plugin <= 1.2.6 - Open Redirection vulnerability | CRM Perks | WP Gravity Forms Keap/Infusionsoft | Medium | 4.7 | 2025-09-22 18:24:12 | Deep Dive |
| CVE-2025-10664 | PHPGurukul Small CRM create-ticket.php sql injection | PHPGurukul | Small CRM | High | 7.3 | 2025-09-18 12:02:07 | Deep Dive |
| CVE-2025-9628 | The integration of the AMO.CRM <= 1.0.1 - Cross-Site Request Forgery | jh5ru | The integration of the AMO.CRM | Medium | 4.3 | 2025-09-11 07:24:51 | Deep Dive |