| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-4006 | Draft List <= 2.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'display_name' Parameter | dartiss | Draft List | Medium | 6.4 | 2026-03-19 06:46:15 | Deep Dive |
| CVE-2026-2512 | Code Embed <= 2.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Fields | dartiss | Code Embed | Medium | 6.4 | 2026-03-18 15:28:29 | Deep Dive |
| CVE-2025-11197 | Draft List <= 2.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | dartiss | Draft List | Medium | 6.4 | 2025-10-11 07:25:57 | Deep Dive |
| CVE-2025-10181 | Draft List <= 2.6 - Authenticated (Contributor+) Stored Cross-Site Scripting | dartiss | Draft List | Medium | 6.4 | 2025-09-20 04:27:55 | Deep Dive |
| CVE-2024-10814 | Code Embed <= 2.5 - Authenticated (Contributor+) Server-Side Request Forgery | dartiss | Code Embed | Medium | 6.4 | 2024-11-09 04:32:26 | Deep Dive |
| CVE-2024-8804 | Code Embed <= 2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | dartiss | Code Embed | Medium | 6.4 | 2024-10-04 05:30:17 | Deep Dive |