| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-31431 | WordPress WP Bookmarks plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability | conlabz GmbH | WP Bookmarks | High | 7.1 | 2025-04-01 20:58:10 | Deep Dive |
| CVE-2025-31608 | WordPress CookieHint WP plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability | reDim GmbH | CookieHint WP | Medium | 6.5 | 2025-03-31 12:55:38 | Deep Dive |
| CVE-2025-2596 | Session logout can be overwritten by long lasting request | Checkmk GmbH | Checkmk | - | - | 2025-03-26 10:51:16 | Deep Dive |
| CVE-2024-10210 | Path traversal in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 05:32:39 | Deep Dive |
| CVE-2024-45484 | Enabled ICMP redirection in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:55:03 | Deep Dive |
| CVE-2024-45483 | Missing GRUB password in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:54:25 | Deep Dive |
| CVE-2024-10209 | Incorrect Permission Assignment in APROL file system | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:46:50 | Deep Dive |
| CVE-2024-10208 | Cross Site Scripting vulnerability in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:43:41 | Deep Dive |
| CVE-2024-10207 | Server-Side Request Forgery (authenticated) in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:42:41 | Deep Dive |
| CVE-2024-10206 | Server-Side Request Forgery (unauthenticated) in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:33:04 | Deep Dive |
| CVE-2024-8314 | Improper session handling in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:30:18 | Deep Dive |
| CVE-2024-8313 | Default or Guessable SNMP community names in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:29:15 | Deep Dive |
| CVE-2025-27340 | WordPress F12-Profiler Plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability | Forge12 Interactive GmbH | F12-Profiler | Medium | 5.4 | 2025-02-24 14:49:19 | Deep Dive |
| CVE-2025-1075 | LDAP credentials logged to Apache error log | Checkmk GmbH | Checkmk | 中危 | - | 2025-02-19 09:49:56 | Deep Dive |
| CVE-2024-8685 | Path-Traversal vulnerability in Revolution Pi | KUNBUS GmbH | Revolution Pi | Medium | 4.3 | 2025-02-10 12:46:28 | Deep Dive |
| CVE-2024-8684 | OS Command Injection vulnerability in Revolution Pi | KUNBUS GmbH | Revolution Pi | High | 8.3 | 2025-02-10 12:45:35 | Deep Dive |
| CVE-2024-38864 | User-Readable Private Key in Windows Agent | Checkmk GmbH | Checkmk | 低危 | - | 2024-12-19 16:07:13 | Deep Dive |
| CVE-2024-54229 | WordPress SV100 Companion plugin <= 2.0.02 - Privilege Escalation vulnerability | straightvisions GmbH | SV100 Companion | Critical | 9.8 | 2024-12-16 15:18:06 | Deep Dive |
| CVE-2023-34381 | WordPress Zippy plugin <= 1.6.2 - Broken Access Control vulnerability | Gesundheit Bewegt GmbH | Zippy | Medium | 5.3 | 2024-12-13 14:23:37 | Deep Dive |
| CVE-2024-28143 | Insecure Password Change Function | Image Access GmbH | Scan2Net | 超危 | - | 2024-12-12 13:52:36 | Deep Dive |