9.1
CVE-2025-40925 - Starch versions 0.14 and earlier generate session ids insecurely
Starch versions 0.14 and earlier generate session ids insecurely. The default session id generator returns a SHA-1 hash seeded with a counter, the epoch time, the built-in rand function, the PID, and internal Perl reference addresses. The PID will come from a small set of numbers, and the epoch tiβ¦
5.3
CVE-2025-10741 - Selleo Mentingo Profile Picture unrestricted upload
A security vulnerability has been detected in Selleo Mentingo up to 2025.08.27. The affected element is an unknown function of the component Profile Picture Handler. The manipulation of the argument userAvatar leads to unrestricted upload. The attack is possible to be carried out remotely. The explβ¦
4.3
CVE-2025-9887 - Custom Login And Signup Widget <= 1.0 - Cross-Site Request Forgery
The Custom Login And Signup Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation in the /frndzk_adminclsw.php file. This makes it possible for unauthenticated attackers to change the eβ¦
6.1
CVE-2025-9883 - Browser Sniff <= 2.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting
The Browser Sniff plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.3. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to update settings and inject malicious web scripts β¦
6.1
CVE-2025-9882 - osTicket WP Bridge <= 1.9.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting
The osTicket WP Bridge plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.2. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to update settings and inject malicious web sβ¦
6.5
CVE-2025-10658 - SupportCandy β Helpdesk & Customer Support Ticket System <= 3.3.7 - Authentication Bypass to Supporβ¦
The SupportCandy β Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 3.3.7. This is due to missing rate limiting on the OTP verification for guest login. This makes it possible for unauthenticated attackers toβ¦
4.3
CVE-2025-9949 - Internal Links Manager <= 3.0.1 - Cross-Site Request Forgery
The Internal Links Manager plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.1. This is due to missing or incorrect nonce validation on the link deletion functionality in the process_bulk_action() function. This makes it possible for unauthenβ¦
4.9
CVE-2025-10002 - ClickWhale <= 2.5.0 - Authenticated (Admin+) SQL injection
The ClickWhale β Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages plugin for WordPress is vulnerable to SQL Injection via the export_csv() function in all versions up to, and including, 2.5.0 due to insufficient escaping on the user supplied parameter and lack of suffβ¦
5.3
CVE-2025-10305 - Secure Passkeys <= 1.2.1 - Missing Authorization to Authenticated (Subscriber+) Passkey Exposure anβ¦
The Secure Passkeys plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the delete_passkey() and passkeys_list() function in all versions up to, and including, 1.2.1. This makes it possible for authenticated attackers, with Subscriber-level access and abovβ¦
4.3
CVE-2025-10489 - SureForms β Drag and Drop Form Builder for WordPress <= 1.12.0 - Missing Authorization to Authenticβ¦
The SureForms β Drag and Drop Contact Form Builder β Multi-step Forms, Conversational Forms and more plugin for WordPress is vulnerable to unauthorized creation of forms due to a missing capability check on the register_post_types() function in all versions up to, and including, 1.12.0. This makes β¦