9.3

CVSS3.1

CVE-2025-26875 - WordPress Multiple Shipping And Billing Address For Woocommerce Plugin <= 1.3 - SQL Injection vulne…

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in silverplugins217 Multiple Shipping And Billing Address For Woocommerce allows SQL Injection. This issue affects Multiple Shipping And Billing Address For Woocommerce: from n/a through 1.3.

πŸ“… Published: March 15, 2025, 9:57 p.m. πŸ”„ Last Modified: March 15, 2025, 10:15 p.m.

7.1

CVSS3.1

CVE-2025-26556 - WordPress WP AntiDDOS Plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in zzmaster WP AntiDDOS allows Reflected XSS. This issue affects WP AntiDDOS: from n/a through 2.0.

πŸ“… Published: March 15, 2025, 9:57 p.m. πŸ”„ Last Modified: March 15, 2025, 10:15 p.m.

7.1

CVSS3.1

CVE-2025-26555 - WordPress Debug-Bar-Extender Plugin <= 0.5 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Debug-Bar-Extender allows Reflected XSS. This issue affects Debug-Bar-Extender: from n/a through 0.5.

πŸ“… Published: March 15, 2025, 9:57 p.m. πŸ”„ Last Modified: March 15, 2025, 10:15 p.m.

7.1

CVSS3.1

CVE-2025-26554 - WordPress WP Discord Post Plugin <= 2.1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Discord Post allows Reflected XSS. This issue affects WP Discord Post: from n/a through 2.1.0.

πŸ“… Published: March 15, 2025, 9:57 p.m. πŸ”„ Last Modified: March 15, 2025, 10:15 p.m.

7.1

CVSS3.1

CVE-2025-26553 - WordPress Pre Order Addon for WooCommerce plugin<= 1.0.7 - Reflected Cross-Site Scripting

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Spring Devs Pre Order Addon for WooCommerce – Advance Order/Backorder Plugin allows Reflected XSS. This issue affects Pre Order Addon for WooCommerce – Advance Order/Backorder Plugin: from n/a thro…

πŸ“… Published: March 15, 2025, 9:57 p.m. πŸ”„ Last Modified: March 15, 2025, 10:15 p.m.

7.1

CVSS3.1

CVE-2025-26548 - WordPress Random Image Selector plugin <= 1.5.6 - Reflected Cross-Site Scripting vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Random Image Selector allows Reflected XSS. This issue affects Random Image Selector: from n/a through 2.4.

πŸ“… Published: March 15, 2025, 9:57 p.m. πŸ”„ Last Modified: March 15, 2025, 10:15 p.m.

7.1

CVSS3.1

CVE-2025-23744 - WordPress Random Posts, Mp3 Player + ShareButton plugin <= 1.4.1 - Reflected Cross Site Scripting (…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in dvs11 Random Posts, Mp3 Player + ShareButton allows Reflected XSS. This issue affects Random Posts, Mp3 Player + ShareButton: from n/a through 1.4.1.

πŸ“… Published: March 15, 2025, 9:57 p.m. πŸ”„ Last Modified: March 15, 2025, 10:15 p.m.

0.0

CVE-2025-25225 - Extension - hikashop.com - Privilege escalation vulnerability Hikashop component version 1.0.0 - 5.…

A privilege escalation vulnerability in the Hikashop component versions 1.0.0-5.1.3 for Joomla allows authenticated attackers (administrator) to escalate their privileges to Super Admin Permissions.

πŸ“… Published: March 15, 2025, 6:06 p.m. πŸ”„ Last Modified: March 15, 2025, 6:15 p.m.

5.3

CVSS4.0

CVE-2025-2323 - 274056675 springboot-openai-chatgpt Number of Question questionCou updateQuestionCou behavioral wor…

A vulnerability was found in 274056675 springboot-openai-chatgpt e84f6f5. It has been declared as problematic. This vulnerability affects the function updateQuestionCou of the file /api/mjkj-chat/chat/mng/update/questionCou of the component Number of Question Handler. The manipulation leads to enfo…

πŸ“… Published: March 15, 2025, 5 p.m. πŸ”„ Last Modified: March 15, 2025, 5:15 p.m.

6.9

CVSS4.0

CVE-2025-2322 - 274056675 springboot-openai-chatgpt OpenController.java hard-coded credentials

A vulnerability was found in 274056675 springboot-openai-chatgpt e84f6f5. It has been classified as critical. This affects an unknown part of the file /chatgpt-boot/src/main/java/org/springblade/modules/mjkj/controller/OpenController.java. The manipulation leads to hard-coded credentials. It is pos…

πŸ“… Published: March 15, 2025, 1:31 p.m. πŸ”„ Last Modified: March 15, 2025, 2:15 p.m.
Total resulsts: 285354
Page 3 of 28,536
Β« previous page Β» next page
Filters