4.3
CVE-2025-66527 - WordPress Lobo theme <= 2.8.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in VanKarWai Lobo lobo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Lobo: from n/a through <= 2.8.6.
4.3
CVE-2025-66526 - WordPress Tablesome plugin <= 1.1.34 - Broken Access Control vulnerability
Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tablesome: from n/a through <= 1.1.34.
4.3
CVE-2025-66525 - WordPress Elastic Email Sender plugin <= 1.2.20 - Broken Access Control vulnerability
Missing Authorization vulnerability in Elastic Email Elastic Email Sender elastic-email-sender allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Elastic Email Sender: from n/a through <= 1.2.20.
4.3
CVE-2025-64257 - WordPress My Tickets plugin <= 2.1.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Joe Dolson My Tickets my-tickets allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects My Tickets: from n/a through <= 2.1.0.
4.3
CVE-2025-64256 - WordPress Simple Folio plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery (CSRF) vulnerability in PressTigers Simple Folio simple-folio allows Cross Site Request Forgery.This issue affects Simple Folio: from n/a through <= 1.1.0.
2.7
CVE-2025-64255 - WordPress Admin and Site Enhancements (ASE) plugin <= 8.0.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in Bowo Admin and Site Enhancements (ASE) admin-site-enhancements allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Admin and Site Enhancements (ASE): from n/a through <= 8.0.8.
2.7
CVE-2025-64254 - WordPress Photo Block plugin <= 1.5.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Ronald Huereca Photo Block photo-block allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Block: from n/a through <= 1.5.1.
8.7
CVE-2025-9368 - 432ES-IG3 Series A Denial-of-Service Vulnerability
A security issue exists within 432ES-IG3 Series A, which affects GuardLinkยฎ EtherNet/IP Interface, resulting in denial-of-service. A manual power cycle is required to recover the device.
8.7
CVE-2025-12807 - FactoryTalkยฎ DataMosaixโข Private Cloud SQL Injection
A security issue was discovered in DataMosaix Private Cloud, allowing users with low privilege to perform sensitive database operations through exposed API endpoints.
4.3
CVE-2025-12558 - Beaver Builder โ WordPress Page Builder <= 2.9.4 - Authenticated (Contributor+) Sensitive Informatiโฆ
The Beaver Builder โ WordPress Page Builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4 via the 'get_attachment_sizes' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extraโฆ