Cristian Branet Skyvern 0.1.85 - Remote Code Execution (RCE) via SSTI
webapps multiple CVE-2025-49619

İbrahimsql PHP CGI Module 8.3.4 - Remote Code Execution (RCE)
webapps php CVE-2024-4577

Milad karimi Litespeed Cache WordPress Plugin 6.3.0.1 - Privilege Escalation
webapps php CVE-2024-28000

/bin/neko Anchor CMS 0.12.7 - Stored Cross Site Scripting (XSS)
webapps php CVE-2025-46041

Maksim Rogov Roundcube 1.6.10 - Remote Code Execution (RCE)
webapps multiple CVE-2025-49113

Mohammed Idrees Banyamer Laravel Pulse 1.3.1 - Arbitrary Code Injection
webapps php CVE-2024-55661

Sanjay Singh CloudClassroom PHP Project 1.0 - SQL Injection
webapps php CVE-2025-45542

Carine Constantino Campcodes Online Hospital Management System 1.0 - SQL Injection
webapps multiple CVE-2025-5298

Saleh Tarawneh WordPress Digits Plugin 8.4.6.1 - Authentication Bypass via OTP Bruteforcing
webapps multiple CVE-2025-4094

d3sca Java-springboot-codebase 1.1 - Arbitrary File Read
webapps java CVE-2025-46822

Mohammed Idrees Banyamer WordPress User Registration & Membership Plugin 4.1.2 - Authentication Bypass
webapps multiple CVE-2025-2594

Md Shoriful Islam WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation
webapps multiple CVE-2025-3605

Alex Messham Kentico Xperience 13.0.178 - Cross Site Scripting (XSS)
webapps multiple CVE-2025-32370

Abdualhadi khalifa SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
webapps multiple CVE-2025-27007

Andrew Long WordPress Depicter Plugin 3.6.1 - SQL Injection
webapps multiple CVE-2025-2011

Ahmed Thaiban ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
webapps python CVE-2025-28062