| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-54021 | WordPress Simple File List plugin <= 6.1.14 - Arbitrary File Download vulnerability | Mitchell Bennis | Simple File List | High | 7.5 | 2025-08-20 08:03:02 | Deep Dive |
| CVE-2025-2988 | IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure | IBM | Sterling B2B Integrator | Low | 2.7 | 2025-08-19 19:15:59 | Deep Dive |
| CVE-2025-33008 | IBM Sterling B2B Integrator and IBM Sterling File Gateway cross-site scripting | IBM | Sterling B2B Integrator | Medium | 5.4 | 2025-08-19 19:03:37 | Deep Dive |
| CVE-2025-47206 | File Station 5 | QNAP Systems Inc. | File Station 5 | - | - | 2025-08-18 08:27:55 | Deep Dive |
| CVE-2025-9098 | Elseplus File Recovery App AndroidManifest.xml improper export of android application components | Elseplus | File Recovery App | Medium | 5.3 | 2025-08-18 00:32:06 | Deep Dive |
| CVE-2025-8464 | Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.9.0 - Directory Traversal via `wpcf7_guest_user_id` Cookie | glenwpcoder | Drag and Drop Multiple File Upload for Contact Form 7 | Medium | 5.3 | 2025-08-16 07:25:29 | Deep Dive |
| CVE-2011-10010 | QuickShare File Server 1.2.1 Path Traversal RCE | QuickShareHQ | QuickShare File Server | - | - | 2025-08-13 20:51:41 | Deep Dive |
| CVE-2025-0818 | Multiple elFinder Plugins <= (Various Versions) - Directory Traversal to Arbitrary File Deletion | ninjateam | File Manager Pro – Filester | Medium | 6.5 | 2025-08-13 03:42:05 | Deep Dive |
| CVE-2025-53729 | Microsoft Azure File Sync Elevation of Privilege Vulnerability | Microsoft | Azure File Sync | High | 7.8 | 2025-08-12 17:09:45 | Deep Dive |
| CVE-2025-7195 | Operator-sdk: privilege escalation due to incorrect permissions of /etc/passwd | operator-framework | operator-sdk | Medium | 6.4 | 2025-08-07 19:05:09 | Deep Dive |
| CVE-2025-6986 | FileBird – WordPress Media Library Folders & File Manager <= 6.4.8 - Authenticated (Author+) SQL Injection | ninjateam | FileBird – WordPress Media Library Folders & File Manager | Medium | 6.5 | 2025-08-06 01:45:13 | Deep Dive |
| CVE-2025-8203 | Jingmen Zeyou Large File Upload Control index.jsp sql injection | Jingmen Zeyou | Large File Upload Control | Medium | 6.3 | 2025-07-26 14:32:06 | Deep Dive |
| CVE-2023-7306 | Frontend File Manager <= 21.5 - Missing Authorization to Unauthenticated Arbitrary Post Deletion | nmedia | Frontend File Manager Plugin | High | 7.5 | 2025-07-25 08:22:50 | Deep Dive |
| CVE-2015-10137 | Website Contact Form With File Upload <= 1.3.4 - Arbitrary File Upload | N-Media | Website Contact Form With File Upload | Critical | 9.8 | 2025-07-22 01:44:29 | Deep Dive |
| CVE-2025-7717 | File Download - Moderately critical - Access bypass - SA-CONTRIB-2025-089 | Drupal | File Download | 中危 | - | 2025-07-21 16:37:15 | Deep Dive |
| CVE-2015-10138 | Work The Flow File Upload <= 2.5.2 - Arbitrary File Upload | lynton_reed | Work The Flow File Upload | Critical | 9.8 | 2025-07-19 11:23:38 | Deep Dive |
| CVE-2025-33014 | IBM Sterling B2B Integrator and IBM Sterling File Gateway link injection | IBM | Sterling B2B Integrator | Medium | 5.4 | 2025-07-18 18:51:05 | Deep Dive |
| CVE-2025-7667 | Restrict File Access <= 1.1.2 - Cross-Site Request Forgery to Arbitrary File Deletion | josxha | Restrict File Access | High | 8.1 | 2025-07-15 11:20:04 | Deep Dive |
| CVE-2020-36847 | Simple File List < 4.2.3 - Remote Code Execution | eemitch | Simple File List | Critical | 9.8 | 2025-07-12 09:24:28 | Deep Dive |
| CVE-2025-34096 | Easy File Sharing HTTP Server 7.2 Buffer Overflow via POST to /sendemail.ghp | EFS Software Inc. | Easy File Sharing HTTP Server | - | - | 2025-07-10 19:15:06 | Deep Dive |