| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-33046 | Indico discloses local files resulting in Remote Code Execution through LaTeX injection | indico | indico | 中危 | - | 2026-03-23 22:45:29 | Deep Dive |
| CVE-2026-28352 | Indico missing access check in event series management API | indico | indico | Medium | 6.5 | 2026-02-27 21:01:46 | Deep Dive |
| CVE-2026-25739 | Indico affected by Cross-Site-Scripting via material uploads | indico | indico | Medium | 5.4 | 2026-02-19 15:39:33 | Deep Dive |
| CVE-2026-25738 | Indico has Server-Side Request Forgery (SSRF) in multiple places | indico | indico | - | - | 2026-02-19 15:30:55 | Deep Dive |
| CVE-2025-59035 | Indico vulnerable to Cross-Site Scripting via LaTeX math code | indico | indico | Medium | 4.6 | 2025-09-10 16:03:37 | Deep Dive |
| CVE-2025-59034 | Indico may disclose unauthorized user details access via legacy API | indico | indico | Medium | 4.3 | 2025-09-10 16:01:10 | Deep Dive |
| CVE-2025-53640 | Indico vulnerable to user enumeration via API endpoint | indico | indico | - | - | 2025-07-14 20:14:27 | Deep Dive |
| CVE-2024-50633 | Indico 安全漏洞 | CERN | Indico | None | 0.0 | 2025-01-16 00:00:00 | Deep Dive |
| CVE-2024-45399 | Indico has a Cross-Site-Scripting during account creation | indico | indico | Medium | 4.3 | 2024-09-04 20:12:20 | Deep Dive |
| CVE-2023-37901 | Cross-Site-Scripting via confirmation prompts | indico | indico | Medium | 5.4 | 2023-07-21 18:14:25 | Deep Dive |