| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-13355 | Admin and Customer Messages After Order for WooCommerce <= 13.2 - Authenticated (Subscriber+) Limited File Upload to Cross-Site Scripting | nmedia | Admin and Customer Messages After Order for WooCommerce: OrderConvo | Medium | 5.4 | 2025-01-16 09:39:14 | Deep Dive |
| CVE-2024-47605 | Cross-site Scripting via insert media remote file oembed in silverstripe-asset-admin | silverstripe | silverstripe-asset-admin | Medium | 5.4 | 2025-01-14 22:42:31 | Deep Dive |
| CVE-2025-0057 | Cross-Site Scripting vulnerability in SAP NetWeaver AS JAVA (User Admin Application) | SAP_SE | SAP NetWeaver AS JAVA (User Admin Application) | Medium | 4.8 | 2025-01-14 00:08:51 | Deep Dive |
| CVE-2025-22814 | WordPress Zephyr Admin Theme Plugin <= 1.4.1 - CSRF to Stored XSS vulnerability | Dylan James | Zephyr Admin Theme | High | 7.1 | 2025-01-09 15:39:04 | Deep Dive |
| CVE-2025-22503 | WordPress Admin debug wordpress – enable debug Plugin <= 1.0.13 - Cross Site Request Forgery vulnerability | digitalzoomstudio | Admin debug wordpress – enable debug | Medium | 4.3 | 2025-01-07 14:57:38 | Deep Dive |
| CVE-2023-44988 | WordPress WP Custom Admin Interface plugin <= 7.32 - Broken Access Control vulnerability | Northern Beaches Websites | WP Custom Admin Interface | Medium | 4.3 | 2025-01-02 11:59:47 | Deep Dive |
| CVE-2024-12938 | code-projects Simple Admin Panel updateOrderStatus.php sql injection | code-projects | Simple Admin Panel | Medium | 6.3 | 2024-12-26 06:00:10 | Deep Dive |
| CVE-2024-12937 | code-projects Simple Admin Panel addVariationController.php sql injection | code-projects | Simple Admin Panel | Medium | 6.3 | 2024-12-26 05:31:05 | Deep Dive |
| CVE-2024-12936 | code-projects Simple Admin Panel catDeleteController.php sql injection | code-projects | Simple Admin Panel | Medium | 6.3 | 2024-12-26 05:00:14 | Deep Dive |
| CVE-2024-12935 | code-projects Simple Admin Panel editItemForm.php sql injection | code-projects | Simple Admin Panel | Medium | 6.3 | 2024-12-26 04:31:05 | Deep Dive |
| CVE-2024-12934 | code-projects Simple Admin Panel updateItemController.php sql injection | code-projects | Simple Admin Panel | Medium | 6.3 | 2024-12-26 04:00:13 | Deep Dive |
| CVE-2024-12933 | code-projects Simple Admin Panel updateItemController.php cross site scripting | code-projects | Simple Admin Panel | Low | 3.5 | 2024-12-26 03:31:05 | Deep Dive |
| CVE-2024-12932 | code-projects Simple Admin Panel addSizeController.php cross site scripting | code-projects | Simple Admin Panel | Low | 3.5 | 2024-12-26 03:00:11 | Deep Dive |
| CVE-2024-12931 | code-projects Simple Admin Panel addCatController.php sql injection | code-projects | Simple Admin Panel | Medium | 6.3 | 2024-12-26 02:31:05 | Deep Dive |
| CVE-2024-12930 | code-projects Simple Admin Panel addCatController.php cross site scripting | code-projects | Simple Admin Panel | Low | 3.5 | 2024-12-26 01:00:10 | Deep Dive |
| CVE-2024-12928 | code-projects Simple Admin Panel sql injection | code-projects | Simple Admin Panel | Medium | 6.3 | 2024-12-25 23:31:05 | Deep Dive |
| CVE-2024-11722 | Frontend Admin by DynamiApps <= 3.25.1 - Unauthenticated SQL Injection | shabti | Frontend Admin by DynamiApps | Medium | 5.9 | 2024-12-21 09:23:55 | Deep Dive |
| CVE-2024-55864 | WordPress plugin My WP Customize Admin/Frontend 跨站脚本漏洞 | gqevu6bsiz | My WP Customize Admin/Frontend | 中危 | - | 2024-12-17 04:43:54 | Deep Dive |
| CVE-2024-12663 | funnyzpc Mee-Admin Login login observable response discrepancy | funnyzpc | Mee-Admin | Low | 3.7 | 2024-12-16 19:00:16 | Deep Dive |
| CVE-2024-54388 | WordPress Multiple Admin Emails plugin <= 1.0 - CSRF to Stored XSS vulnerability | Phuc Pham | Multiple Admin Emails | High | 7.1 | 2024-12-16 14:14:07 | Deep Dive |