| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-7425 | Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr | GNOME | libxml2 | High | 7.8 | 2025-07-10 13:53:37 | Deep Dive |
| CVE-2025-2827 | IBM Sterling File Gateway information disclosure | IBM | Sterling File Gateway | Medium | 4.3 | 2025-07-08 15:01:53 | Deep Dive |
| CVE-2025-2793 | IBM Sterling B2B Integrator and IBM Sterling File Gateway cross-site scripting | IBM | Sterling B2B Integrator | Medium | 5.4 | 2025-07-08 14:59:16 | Deep Dive |
| CVE-2025-3630 | IBM Sterling B2B Integrator and IBM Sterling File Gateway cross-site scripting | IBM | Sterling B2B Integrator | Medium | 6.4 | 2025-07-08 14:51:25 | Deep Dive |
| CVE-2025-27358 | WordPress Frontend File Manager plugin <= 23.6 - Content Injection vulnerability | N-Media | Frontend File Manager | Medium | 4.6 | 2025-07-04 08:42:10 | Deep Dive |
| CVE-2025-3702 | WordPress Melapress File Monitor plugin < 2.2.0 - Broken Access Control vulnerability | Melapress | Melapress File Monitor | Medium | 5.4 | 2025-07-03 12:14:04 | Deep Dive |
| CVE-2025-5746 | Drag and Drop Multiple File Upload (Pro) - WooCommerce <= 1.7.1 and 5.0 - 5.0.5 - Unauthenticated Arbitrary File Upload | CodeDropz | Drag and Drop Multiple File Upload (Pro) - WooCommerce | Critical | 9.8 | 2025-07-02 03:47:24 | Deep Dive |
| CVE-2025-53260 | WordPress File Manager Plugin For Wordpress plugin <= 7.5 - Arbitrary File Upload Vulnerability | getredhawkstudio | File Manager Plugin For Wordpress | Critical | 9.1 | 2025-06-27 13:21:08 | Deep Dive |
| CVE-2025-49885 | WordPress Drag and Drop Multiple File Upload (Pro) - WooCommerce plugin <= 5.0.6 - Arbitrary File Upload Vulnerability | HaruTheme | Drag and Drop Multiple File Upload (Pro) - WooCommerce | Critical | 10.0 | 2025-06-27 11:52:31 | Deep Dive |
| CVE-2025-5034 | WP File Download < 6.2.6 - Reflected XSS | Unknown | wp-file-download | - | - | 2025-06-21 06:00:09 | Deep Dive |
| CVE-2025-52710 | WordPress File Manager Pro plugin <= 1.8.8 - Cross Site Scripting (XSS) Vulnerability | Ninja Team | File Manager Pro | Medium | 5.9 | 2025-06-20 15:03:35 | Deep Dive |
| CVE-2025-3515 | Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.8.9 - Unauthenticated Arbitrary File Upload via Insufficient Blacklist Checks | glenwpcoder | Drag and Drop Multiple File Upload for Contact Form 7 | High | 8.1 | 2025-06-17 09:21:39 | Deep Dive |
| CVE-2025-49794 | Libxml: heap use after free (uaf) leads to denial of service (dos) | - | - | Critical | 9.1 | 2025-06-16 15:24:31 | Deep Dive |
| CVE-2025-49796 | Libxml: type confusion leads to denial of service (dos) | - | - | Critical | 9.1 | 2025-06-16 15:14:28 | Deep Dive |
| CVE-2025-6070 | Restrict File Access <= 1.1.2 - Authenticated (Subscriber+) Arbitrary File Read | josxha | Restrict File Access | Medium | 6.5 | 2025-06-14 08:23:26 | Deep Dive |
| CVE-2025-3234 | File Manager Pro – Filester <= 1.8.8 - Authenticated (Administrator+) Arbitrary File Upload | ninjateam | File Manager Pro – Filester | High | 7.2 | 2025-06-14 05:32:01 | Deep Dive |
| CVE-2025-36852 | Build Cache Poisoning via Untrusted Pull Requests | Niklas Portmann | Azure Based Remote Cache Plugin for Nx | - | - | 2025-06-10 19:23:34 | Deep Dive |
| CVE-2025-5914 | Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c | - | - | High | 7.8 | 2025-06-09 19:53:49 | Deep Dive |
| CVE-2025-29885 | File Station 5 | QNAP Systems Inc. | File Station 5 | - | - | 2025-06-06 15:54:39 | Deep Dive |
| CVE-2025-29884 | File Station 5 | QNAP Systems Inc. | File Station 5 | - | - | 2025-06-06 15:54:35 | Deep Dive |