Vulnerabilities

CVE Alert: CVE-2025-1509

February 23, 2025

Vulnerability Summary: CVE-2025-1509 The The Show Me The Cookies plugin for WordPress is vulnerable to arbitrary shortcode execution in all...

CVE Alert: CVE-2024-13798

February 23, 2025

Vulnerability Summary: CVE-2024-13798 The Post Grid and Gutenberg Blocks – ComboBlocks plugin for WordPress is vulnerable to unauthorized order creation...

CVE Alert: CVE-2024-12467

February 23, 2025

Vulnerability Summary: CVE-2024-12467 The Pago por Redsys plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'Ds_MerchantParameters' parameter...

CVE Alert: CVE-2024-12038

February 23, 2025

Vulnerability Summary: CVE-2024-12038 The Post Form – Registration Form – Profile Form for User Profiles – Frontend Content Forms for...

CVE Alert: CVE-2025-1510

February 23, 2025

Vulnerability Summary: CVE-2025-1510 The The Custom Post Type Date Archives plugin for WordPress is vulnerable to arbitrary shortcode execution in...

CVE Alert: CVE-2024-13474

February 23, 2025

Vulnerability Summary: CVE-2024-13474 The LTL Freight Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the...

CVE Alert: CVE-2025-0953

February 23, 2025

Vulnerability Summary: CVE-2025-0953 The SMTP for Sendinblue – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions...

CVE Alert: CVE-2025-1553

February 23, 2025

Vulnerability Summary: CVE-2025-1553 A vulnerability was found in pankajindevops scale up to 3633544a00245d3df88b6d13d9b3dd0f411be7f6. It has been classified as problematic. Affected...

CVE Alert: CVE-2024-13869

February 23, 2025

Vulnerability Summary: CVE-2024-13869 The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file...

CVE Alert: CVE-2025-1361

February 23, 2025

Vulnerability Summary: CVE-2025-1361 The IP2Location Country Blocker plugin for WordPress is vulnerable to Regular Information Exposure in all versions up...

CVE Alert: CVE-2024-13564

February 23, 2025

Vulnerability Summary: CVE-2024-13564 The Rife Elementor Extensions & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...

CVE Alert: CVE-2025-0918

February 23, 2025

Vulnerability Summary: CVE-2025-0918 The SMTP for SendGrid – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions...

Vulnerability Summary: CVE-2025-26764 Missing Authorization vulnerability in enituretechnology Distance Based Shipping Calculator allows Exploiting Incorrectly Configured Access Control Security Levels....

CVE Alert: CVE-2025-1556

February 23, 2025

Vulnerability Summary: CVE-2025-1556 A vulnerability, which was classified as problematic, has been found in westboy CicadasCMS 1.0. This issue affects...

CVE Alert: CVE-2025-0957

February 23, 2025

Vulnerability Summary: CVE-2025-0957 The SMTP for Amazon SES – YaySMTP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in...

CVE Alert: CVE-2025-1557

February 23, 2025

Vulnerability Summary: CVE-2025-1557 A vulnerability, which was classified as problematic, was found in OFCMS 1.1.3. Affected is an unknown function....

CVE Alert: CVE-2025-26756

February 23, 2025

Vulnerability Summary: CVE-2025-26756 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grimdonkey Magic the Gathering Card...

CVE Alert: CVE-2025-26750

February 23, 2025

Vulnerability Summary: CVE-2025-26750 Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...

CVE Alert: CVE-2025-26760

February 23, 2025

Vulnerability Summary: CVE-2025-26760 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Wow-Company...

CVE Alert: CVE-2025-26757

February 23, 2025

Vulnerability Summary: CVE-2025-26757 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FULL...

CVE Alert: CVE-2025-26763

February 23, 2025

Vulnerability Summary: CVE-2025-26763 Deserialization of Untrusted Data vulnerability in MetaSlider Responsive Slider by MetaSlider allows Object Injection. This issue affects...

CVE Alert: CVE-2025-27012

February 23, 2025

Vulnerability Summary: CVE-2025-27012 Cross-Site Request Forgery (CSRF) vulnerability in a1post A1POST.BG Shipping for Woo allows Privilege Escalation. This issue affects...

CVE Alert: CVE-2025-26776

February 23, 2025

Vulnerability Summary: CVE-2025-26776 Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Chaty Pro allows Upload a Web Shell...

CVE Alert: CVE-2022-28339

February 23, 2025

Vulnerability Summary: CVE-2022-28339 Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled search patch element vulnerability...

Vulnerabilities

CVE Alert: CVE-2025-1509

CVE Alert: CVE-2024-13798

CVE Alert: CVE-2024-12467

CVE Alert: CVE-2024-12038

CVE Alert: CVE-2025-1510

CVE Alert: CVE-2024-13474

CVE Alert: CVE-2025-0953

CVE Alert: CVE-2025-1553

CVE Alert: CVE-2024-13869

CVE Alert: CVE-2025-1361

CVE Alert: CVE-2024-13564

CVE Alert: CVE-2025-0918

CVE Alert: CVE-2025-26764

CVE Alert: CVE-2025-1556

CVE Alert: CVE-2025-0957

CVE Alert: CVE-2025-1557

CVE Alert: CVE-2025-26756

CVE Alert: CVE-2025-26750

CVE Alert: CVE-2025-26760

CVE Alert: CVE-2025-26757

CVE Alert: CVE-2025-26763

CVE Alert: CVE-2025-27012

CVE Alert: CVE-2025-26776

CVE Alert: CVE-2022-28339

[APOS] – Ransomware Victim: InternetWay

[APOS] – Ransomware Victim: Netcom-World

CVE Alert: CVE-2024-51963

CVE Alert: CVE-2024-51966

CVE Alert: CVE-2024-51956

You may have missed