CVE Alert: CVE-2025-22676
Vulnerability Summary: CVE-2025-22676 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in upcasted AWS S3 for WordPress...
Vulnerabilities
CVE Alert: CVE-2025-26767
Vulnerability Summary: CVE-2025-26767 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Qubely – Advanced Gutenberg...
CVE Alert: CVE-2025-26766
Vulnerability Summary: CVE-2025-26766 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VaultDweller Leyka allows Stored XSS....
CVE Alert: CVE-2025-26768
Vulnerability Summary: CVE-2025-26768 Cross-Site Request Forgery (CSRF) vulnerability in what3words what3words Address Field allows Stored XSS. This issue affects what3words...
CVE Alert: CVE-2025-26765
Vulnerability Summary: CVE-2025-26765 Missing Authorization vulnerability in enituretechnology Distance Based Shipping Calculator allows Exploiting Incorrectly Configured Access Control Security Levels....
CVE Alert: CVE-2025-26779
Vulnerability Summary: CVE-2025-26779 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Fahad Mahmood Keep Backup...
CVE Alert: CVE-2025-21401
Vulnerability Summary: CVE-2025-21401 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/15/2025, 12:15:27...
CVE Alert: CVE-2024-13513
Vulnerability Summary: CVE-2024-13513 The Oliver POS – A WooCommerce Point of Sale (POS) plugin for WordPress is vulnerable to Sensitive...
CVE Alert: CVE-2024-13525
Vulnerability Summary: CVE-2024-13525 The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all...
CVE Alert: CVE-2025-1302
Vulnerability Summary: CVE-2025-1302 Versions of the package jsonpath-plus before 10.3.0 are vulnerable to Remote Code Execution (RCE) due to improper...
CVE Alert: CVE-2025-26819
Vulnerability Summary: CVE-2025-26819 Monero through 0.18.3.4 before ec74ff4 does not have response limits on HTTP server connections. Affected Endpoints: No...
CVE Alert: CVE-2024-13563
Vulnerability Summary: CVE-2024-13563 The Front End Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's forgot-password...
CVE Alert: CVE-2024-13752
Vulnerability Summary: CVE-2024-13752 The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts...
CVE Alert: CVE-2025-0935
Vulnerability Summary: CVE-2025-0935 The Media Library Folders plugin for WordPress is vulnerable to unauthorized plugin settings change due to a...
CVE Alert: CVE-2024-12562
Vulnerability Summary: CVE-2024-12562 The s2Member Pro plugin for WordPress is vulnerable to PHP Object Injection in all versions up to,...
CVE Alert: CVE-2025-1005
Vulnerability Summary: CVE-2025-1005 The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image...
CVE Alert: CVE-2024-10581
Vulnerability Summary: CVE-2024-10581 The DirectoryPress Frontend plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,...
CVE Alert: CVE-2024-13488
Vulnerability Summary: CVE-2024-13488 The LTL Freight Quotes – Estes Edition plugin for WordPress is vulnerable to SQL Injection via the...
CVE Alert: CVE-2024-13834
Vulnerability Summary: CVE-2024-13834 The Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme plugin for WordPress...
CVE Alert: CVE-2024-13439
Vulnerability Summary: CVE-2024-13439 The Team – Team Members Showcase Plugin plugin for WordPress is vulnerable to unauthorized access due to...
CVE Alert: CVE-2024-13500
Vulnerability Summary: CVE-2024-13500 The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts...
CVE Alert: CVE-2025-0822
Vulnerability Summary: CVE-2025-0822 Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including,...
CVE Alert: CVE-2025-24616
Vulnerability Summary: CVE-2025-24616 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in UIUX Lab Uix Page Builder...
CVE Alert: CVE-2025-24614
Vulnerability Summary: CVE-2025-24614 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in agileLogix Post Timeline allows Reflected...
