| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-12683 | Smart Maintenance Mode < 1.5.2 - Admin+ Stored XSS | Unknown | Smart Maintenance Mode | - | - | 2025-03-26 06:00:06 | Deep Dive |
| CVE-2025-1490 | Smart Maintenance Mode <= 1.5.2 - Reflected Cross-Site Scripting via setstatus Parameter | brijeshk89 | Smart Maintenance Mode | Medium | 6.1 | 2025-03-26 02:23:50 | Deep Dive |
| CVE-2024-12682 | Smart Maintenance Mode < 1.5.2 - Admin+ Stored XSS | Unknown | Smart Maintenance Mode | 中危 | - | 2025-03-25 06:00:12 | Deep Dive |
| CVE-2025-22369 | Mennekes smart/premium charges systems, Arbitrary file download using ReadFile endpoint | Mennekes | Smart / Premium charging stations | 中危 | - | 2025-03-11 13:40:24 | Deep Dive |
| CVE-2025-22366 | Mennekes smart/premium charges systems, Command injection in firmware upgrade | Mennekes | Smart / Premium charging stations | 中危 | - | 2025-03-11 13:40:24 | Deep Dive |
| CVE-2025-22370 | Mennekes smart/premium charges systems, SQL Injection in web configuration interface | Mennekes | Smart / Premium charging stations | 中危 | - | 2025-03-11 13:40:23 | Deep Dive |
| CVE-2025-22368 | Mennekes smart/premium charges systems, Command injection in sCU firmware update | Mennekes | Smart / Premium charging stations | 中危 | - | 2025-03-11 13:40:22 | Deep Dive |
| CVE-2025-22367 | Mennekes smart/premium charges systems, Command injection in time setting | Mennekes | Smart / Premium charging stations | 中危 | - | 2025-03-11 13:40:21 | Deep Dive |
| CVE-2025-2189 | Information Disclosure Vulnerability in Tinxy Smart Devices | Mogify Infotech | Tinxy Wi-Fi Lock Controller v1 RF | 中危 | - | 2025-03-11 11:40:20 | Deep Dive |
| CVE-2024-56182 | Siemens SIMATIC 缓冲区错误漏洞 | Siemens | SIMATIC Field PG M5 | High | 8.2 | 2025-03-11 09:48:05 | Deep Dive |
| CVE-2024-56181 | Siemens SIMATIC 缓冲区错误漏洞 | Siemens | SIMATIC Field PG M5 | High | 8.2 | 2025-03-11 09:48:04 | Deep Dive |
| CVE-2025-27332 | WordPress Smart Maintenance & Countdown Plugin <= 1.2 - CSRF to Stored XSS vulnerability | gmnazmul | Smart Maintenance & Countdown | High | 7.1 | 2025-02-24 14:49:15 | Deep Dive |
| CVE-2024-13658 | NGG Smart Image Search <= 3.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | wpo-hr | NGG Smart Image Search | Medium | 6.4 | 2025-02-12 04:22:16 | Deep Dive |
| CVE-2025-25152 | WordPress Smart DoFollow plugin <= 1.0.2 - CSRF to Stored XSS vulnerability | LukaszWiecek | Smart DoFollow | High | 7.1 | 2025-02-07 10:11:58 | Deep Dive |
| CVE-2025-25117 | WordPress Smart Countdown FX plugin <= 1.5.5 - Cross Site Scripting (XSS) vulnerability | Alex Polonski | Smart Countdown FX | Medium | 6.5 | 2025-02-07 10:11:44 | Deep Dive |
| CVE-2024-13380 | Alex Reservations: Smart Restaurant Booking <= 2.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | alexreservations | Alex Reservations: Smart Restaurant Booking | Medium | 6.4 | 2025-01-30 12:22:27 | Deep Dive |
| CVE-2025-23669 | WordPress WP Smart Tooltip plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability | Nurul Amin | WP Smart Tooltip | Medium | 6.5 | 2025-01-27 14:22:14 | Deep Dive |
| CVE-2025-0697 | Telstra Smart Modem Gen 2 HTTP Header injection | Telstra | Smart Modem Gen 2 | Medium | 5.3 | 2025-01-24 15:00:19 | Deep Dive |
| CVE-2025-22710 | WordPress Smart Manager Plugin <= 8.52.0 - SQL Injection vulnerability | storeapps | Smart Manager | High | 7.6 | 2025-01-21 13:57:34 | Deep Dive |
| CVE-2024-34579 | Fuji Electric Alpha5 SMART Stack-Based Buffer Overflow | Fuji Electric | Alpha5 SMART | High | 7.8 | 2025-01-17 00:21:36 | Deep Dive |