5.9

CVSS3.1

CVE-2025-47638 - WordPress WP Discord Invite <= 2.5.3 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sarvesh M Rao WP Discord Invite allows Stored XSS. This issue affects WP Discord Invite: from n/a through 2.5.3.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 2:39 p.m.

7.5

CVSS3.1

CVE-2025-47636 - WordPress List category posts <= 0.90.3 - Local File Inclusion Vulnerability

Path Traversal vulnerability in Fernando Briano List category posts allows PHP Local File Inclusion. This issue affects List category posts: from n/a through 0.90.3.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 2:39 p.m.

5.5

CVSS3.1

CVE-2025-47635 - WordPress WebinarPress <= 1.33.27 - Server Side Request Forgery (SSRF) Vulnerability

Server-Side Request Forgery (SSRF) vulnerability in WPWebinarSystem WebinarPress allows Server Side Request Forgery. This issue affects WebinarPress: from n/a through 1.33.27.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 2:39 p.m.

4.3

CVSS3.1

CVE-2025-47633 - WordPress Awin – Advertiser Tracking for WooCommerce plugin <= 2.0.0 - CSRF to Product Feed Regener…

Cross-Site Request Forgery (CSRF) vulnerability in Awin Awin – Advertiser Tracking for WooCommerce allows Cross Site Request Forgery. This issue affects Awin – Advertiser Tracking for WooCommerce: from n/a through 2.0.0.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 3:14 p.m.

6.5

CVSS3.1

CVE-2025-47632 - WordPress Awesome Gallery <= 1.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Raihanul Islam Awesome Gallery allows Stored XSS. This issue affects Awesome Gallery: from n/a through 1.0.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 3:15 p.m.

6.5

CVSS3.1

CVE-2025-47630 - WordPress Ajax Load More <= 7.3.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Darren Cooney Ajax Load More allows Stored XSS. This issue affects Ajax Load More: from n/a through 7.3.1.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 3:17 p.m.

7.2

CVSS3.1

CVE-2025-47629 - WordPress WP-CRM System <= 3.4.1 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in Mario Peshev WP-CRM System allows Object Injection. This issue affects WP-CRM System: from n/a through 3.4.1.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 2:39 p.m.

5.4

CVSS3.1

CVE-2025-47628 - WordPress QS Dark Mode <= 3.0 - Broken Access Control Vulnerability

Missing Authorization vulnerability in quomodosoft QS Dark Mode allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects QS Dark Mode: from n/a through 3.0.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 3:20 p.m.

5.9

CVSS3.1

CVE-2025-47626 - WordPress Submission DOM tracking for Contact Form 7 <= 2.0 - Cross Site Scripting (XSS) Vulnerabil…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in apasionados Submission DOM tracking for Contact Form 7 allows Stored XSS. This issue affects Submission DOM tracking for Contact Form 7: from n/a through 2.0.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 3:21 p.m.

5.9

CVSS3.1

CVE-2025-47625 - WordPress DoFollow Case by Case <= 3.5.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in apasionados DoFollow Case by Case allows Stored XSS. This issue affects DoFollow Case by Case: from n/a through 3.5.1.

πŸ“… Published: May 7, 2025, 2:20 p.m. πŸ”„ Last Modified: May 8, 2025, 3:23 p.m.
Total resulsts: 293230
Page 24 of 29,323
Β« previous page Β» next page
Filters