7.1

CVSS3.1

CVE-2025-24534 - WordPress DPortfolio plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in dinamiko DPortfolio dportfolio allows Reflected XSS.This issue affects DPortfolio: from n/a through <= 2.0.

📅 Published: Jan. 31, 2025, 8:24 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

7.1

CVSS3.1

CVE-2025-23759 - WordPress Affiliate Tools Việt Nam plugin <= 0.3.17 - Reflected Cross Site Scripting (XSS) vulnerab…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gavin Affiliate Tools Việt Nam affiliate-tools-viet-nam allows Reflected XSS.This issue affects Affiliate Tools Việt Nam: from n/a through <= 0.3.17.

📅 Published: Jan. 31, 2025, 8:24 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

7.1

CVSS3.1

CVE-2025-23671 - WordPress WP OpenSearch plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sav WP OpenSearch wp-opensearch allows Stored XSS.This issue affects WP OpenSearch: from n/a through <= 1.0.

📅 Published: Jan. 31, 2025, 8:24 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

7.1

CVSS3.1

CVE-2025-23596 - WordPress Notifikácie.sk plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grafeon Notifikácie.sk notifikacie-sk allows Reflected XSS.This issue affects Notifikácie.sk: from n/a through <= 1.0.

📅 Published: Jan. 31, 2025, 8:24 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

7.1

CVSS3.1

CVE-2025-23990 - WordPress Scroll Styler plugin <= 1.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in jablonczay Scroll Styler scroll-styler.This issue affects Scroll Styler: from n/a through <= 1.1.

📅 Published: Jan. 31, 2025, 8:23 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

7.1

CVSS3.1

CVE-2025-23989 - WordPress Internal Link Builder plugin <= 1.0 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Alessandro Piconi Internal Link Builder internal-link-builder allows Cross Site Request Forgery.This issue affects Internal Link Builder: from n/a through <= 1.0.

📅 Published: Jan. 31, 2025, 8:23 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

6.5

CVSS3.1

CVE-2025-23987 - WordPress Designer plugin <= 1.6.4 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in codegearthemes Designer designer allows DOM-Based XSS.This issue affects Designer: from n/a through <= 1.6.4.

📅 Published: Jan. 31, 2025, 8:23 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

5.4

CVSS3.1

CVE-2025-23985 - WordPress Dynamic URL SEO plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in brainvireinfo Dynamic URL SEO dynamic-url-seo allows Cross Site Request Forgery.This issue affects Dynamic URL SEO: from n/a through <= 1.0.

📅 Published: Jan. 31, 2025, 8:23 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

7.1

CVSS3.1

CVE-2025-23980 - WordPress Full Circle plugin <= 0.5.7.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in James Andrews Full Circle full-circle allows Stored XSS.This issue affects Full Circle: from n/a through <= 0.5.7.8.

📅 Published: Jan. 31, 2025, 8:23 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.

7.1

CVSS3.1

CVE-2025-23978 - WordPress FlashCounter plugin <= 1.1.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Ninos FlashCounter flashcounter allows Stored XSS.This issue affects FlashCounter: from n/a through <= 1.1.8.

📅 Published: Jan. 31, 2025, 8:23 a.m. 🔄 Last Modified: April 23, 2026, 3:24 p.m.
Total resulsts: 349182
Page 6889 of 34,919
« previous page » next page
Filters