| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-4945 | Libsoup: integer overflow in cookie expiration date handling in libsoup | - | - | Low | 3.7 | 2025-05-19 17:03:09 | Deep Dive |
| CVE-2025-4948 | Libsoup: integer underflow in soup_multipart_new_from_message() leading to denial of service in libsoup | - | - | High | 7.5 | 2025-05-19 15:55:46 | Deep Dive |
| CVE-2025-48282 | WordPress Majestic Support plugin <= 1.1.0 - Broken Access Control Vulnerability | Majestic Support | Majestic Support | Medium | 5.3 | 2025-05-19 14:45:28 | Deep Dive |
| CVE-2025-48260 | WordPress GDPR CCPA Compliance Support plugin <= 2.7.3 - Broken Access Control Vulnerability | Ninja Team | GDPR CCPA Compliance Support | Medium | 4.3 | 2025-05-19 14:45:02 | Deep Dive |
| CVE-2025-31928 | WordPress Multimedia Responsive Carousel with Image Video Audio Support plugin <= 2.6.0 - SQL Injection Vulnerability | LambertGroup | Multimedia Responsive Carousel with Image Video Audio Support | High | 8.5 | 2025-05-16 15:45:34 | Deep Dive |
| CVE-2023-7088 | Add SVG Support for Media Uploader | inventivo <= 1.0.5 - Author+ Stored XSS via SVG | Unknown | Add SVG Support for Media Uploader | inventivo | - | - | 2025-05-15 20:09:22 | Deep Dive |
| CVE-2023-7086 | SVG Uploads Support <= 2.1.1 - Author+ Stored XSS via SVG | Unknown | SVG Uploads Support | - | - | 2025-05-15 20:09:22 | Deep Dive |
| CVE-2025-4373 | Glib: buffer underflow on glib through glib/gstring.c via function g_string_insert_unichar | - | - | Medium | 4.8 | 2025-05-06 14:48:39 | Deep Dive |
| CVE-2025-3891 | Mod_auth_openidc: dos via empty post in mod_auth_openidc with oidcpreservepost enabled | - | - | High | 7.5 | 2025-04-29 11:56:51 | Deep Dive |
| CVE-2025-39404 | WordPress Sassy Social Share plugin <= 3.3.73 - Open Redirection vulnerability | Heateor Support | Sassy Social Share | Medium | 4.7 | 2025-04-24 16:08:31 | Deep Dive |
| CVE-2025-46421 | Libsoup: information disclosure may leads libsoup client sends authorization header to a different host when being redirected by a server | - | - | Medium | 6.8 | 2025-04-24 13:01:25 | Deep Dive |
| CVE-2025-46420 | Libsoup: memory leak on soup_header_parse_quality_list() via soup-headers.c | - | - | Medium | 6.5 | 2025-04-24 12:58:01 | Deep Dive |
| CVE-2025-46397 | Xfig: xfig: stack-overflow allows possible code execution via local input manipulation | - | - | High | 7.8 | 2025-04-23 20:55:10 | Deep Dive |
| CVE-2024-10306 | Mod_proxy_cluster: mod_proxy_cluster unauthorized mcmp requests | - | - | Medium | 5.4 | 2025-04-23 09:59:49 | Deep Dive |
| CVE-2025-32635 | WordPress Hive Support plugin <= 1.2.6 - Sensitive Data Exposure vulnerability | Hive Support | Hive Support | High | 7.5 | 2025-04-17 15:47:11 | Deep Dive |
| CVE-2025-32666 | WordPress Hive Support plugin <= 1.2.5 - Reflected Cross Site Scripting (XSS) vulnerability | Hive Support | Hive Support | High | 7.1 | 2025-04-17 15:47:00 | Deep Dive |
| CVE-2025-32911 | Libsoup: double free on soup_message_headers_get_content_disposition() through "soup-message-headers.c" via "params" ghashtable value | - | - | Critical | 9.0 | 2025-04-15 15:39:35 | Deep Dive |
| CVE-2025-3576 | Krb5: kerberos rc4-hmac-md5 checksum vulnerability enabling message spoofing via md5 collisions | - | - | Medium | 5.9 | 2025-04-15 05:55:27 | Deep Dive |
| CVE-2025-32914 | Libsoup: oob read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of process | - | - | High | 7.4 | 2025-04-14 14:45:46 | Deep Dive |
| CVE-2025-32907 | Libsoup: denial of service in server when client requests a large amount of overlapping ranges with range header | - | - | Medium | 5.3 | 2025-04-14 14:00:10 | Deep Dive |