| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-2402 | Hard-coded password for object store of KNIME Business Hub | KNIME | KNIME Business Hub | 中危 | - | 2025-03-31 06:11:40 | Deep Dive |
| CVE-2025-2787 | Ingress-nginx vulnerability in KNIME Business Hub | KNIME | KNIME Business Hub | - | - | 2025-03-26 21:08:08 | Deep Dive |
| CVE-2025-26986 | WordPress Pearl Theme < 3.4.8 - Local File Inclusion vulnerability | StylemixThemes | Pearl - Corporate Business | High | 8.1 | 2025-03-26 14:37:35 | Deep Dive |
| CVE-2025-2224 | Directorist <= 8.2 - Missing Authorization to Unauthenticated Arbitrary Post Publishing | wpwax | Directorist: AI-Powered Business Directory, Listings & Classified Ads | Medium | 5.3 | 2025-03-25 05:22:48 | Deep Dive |
| CVE-2024-13887 | Business Directory Plugin - Easy Listing Directories for WordPress <= 6.4.14 - Insecure Direct Object Reference to Listing Arbitrary Image Addition | strategy11team | Business Directory Plugin – Easy Listing Directories for WordPress | Medium | 5.3 | 2025-03-13 03:21:01 | Deep Dive |
| CVE-2025-26658 | Broken Authentication in SAP Business One (Service Layer) | SAP_SE | SAP Business One (Service Layer) | Medium | 6.8 | 2025-03-11 00:35:35 | Deep Dive |
| CVE-2025-25245 | Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (Web Intelligence) | SAP_SE | SAP BusinessObjects Business Intelligence Platform (Web Intelligence) | Medium | 5.4 | 2025-03-11 00:34:56 | Deep Dive |
| CVE-2025-25244 | Missing Authorization Check in SAP Business Warehouse (Process Chains) | SAP_SE | SAP Business Warehouse (Process Chains) | Medium | 5.7 | 2025-03-11 00:34:43 | Deep Dive |
| CVE-2025-23185 | Information Disclosure in SAP Business Objects Business Intelligence Platform | SAP_SE | SAP Business Objects Business Intelligence Platform | Medium | 4.1 | 2025-03-11 00:31:51 | Deep Dive |
| CVE-2025-0062 | Cross-Site Scripting (XSS) vulnerability in SAP BusinessObjects Business Intelligence Platform (Web Intelligence) | SAP_SE | SAP BusinessObjects Business Intelligence Platform | Medium | 4.7 | 2025-03-11 00:31:19 | Deep Dive |
| CVE-2025-2114 | Shenzhen Sixun Software Sixun Shanghui Group Business Management System Reset Password Interface OperatorStop.asp improper authorization | Shenzhen Sixun Software | Sixun Shanghui Group Business Management System | Low | 3.7 | 2025-03-09 04:31:04 | Deep Dive |
| CVE-2024-54179 | IBM Business Automation Workflow cross-site scripting | IBM | Business Automation Workflow | Medium | 5.4 | 2025-03-03 13:56:50 | Deep Dive |
| CVE-2025-1570 | Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings <= 8.1 - Privilege Escalation and Account Takeover via Weak OTP | wpwax | Directorist: AI-Powered Business Directory, Listings & Classified Ads | High | 8.1 | 2025-02-28 08:23:18 | Deep Dive |
| CVE-2025-26952 | WordPress Business Card Block plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability | bPlugins | Business Card Block | Medium | 6.5 | 2025-02-25 14:17:57 | Deep Dive |
| CVE-2025-1063 | Classified Listing – Classified ads & Business Directory Plugin <= 4.0.4 - Unauthenticated Settings Exposure | techlabpro1 | Classified Listing – AI-Powered Classified ads & Business Directory Plugin | Medium | 5.3 | 2025-02-25 06:58:32 | Deep Dive |
| CVE-2024-37363 | Hitachi Vantara Pentaho Business Analytics Server - Incorrect Authorization | Hitachi Vantara | Pentaho Data Integration & Analytics | Medium | 6.5 | 2025-02-19 23:40:10 | Deep Dive |
| CVE-2024-37362 | Hitachi Vantara Pentaho Data Integration & Analytics - Insufficiently Protected Credentials | Hitachi Vantara | Pentaho Data Integration & Analytics | Medium | 6.3 | 2025-02-19 23:34:30 | Deep Dive |
| CVE-2024-6697 | Hitachi Vantara Pentaho Business Analytics Server - Improper Handling of Insufficient Permissions or Privileges | Hitachi Vantara | Pentaho Data Integration & Analytics | Medium | 6.5 | 2025-02-19 23:32:19 | Deep Dive |
| CVE-2024-6696 | Hitachi Vantara Pentaho Business Analytics Server - Insufficient Granularity of Access Control | Hitachi Vantara | Pentaho Data Integration & Analytics | Medium | 4.9 | 2025-02-19 23:29:43 | Deep Dive |
| CVE-2024-37361 | Hitachi Vantara Pentaho Business Analytics Server - Deserialization of Untrusted Data | Hitachi Vantara | Pentaho Data Integration & Analytics | Critical | 9.9 | 2025-02-19 23:25:33 | Deep Dive |