CVE Alert: CVE-2025-27598
Vulnerability Summary: CVE-2025-27598 ImageSharp is a 2D graphics API. An Out-of-bounds Write vulnerability has been found in the ImageSharp gif...
CVE
CVE Alert: CVE-2025-2046
Vulnerability Summary: CVE-2025-2046 A vulnerability was found in SourceCodester Best Employee Management System 1.0 and classified as critical. Affected by...
CVE Alert: CVE-2025-2047
Vulnerability Summary: CVE-2025-2047 A vulnerability was found in PHPGurukul Art Gallery Management System 1.0. It has been classified as problematic....
CVE Alert: CVE-2024-13787
Vulnerability Summary: CVE-2024-13787 The VEDA - MultiPurpose WordPress Theme theme for WordPress is vulnerable to PHP Object Injection in all...
CVE Alert: CVE-2024-13780
Vulnerability Summary: CVE-2024-13780 The Hero Mega Menu - Responsive WordPress Menu Plugin plugin for WordPress is vulnerable to arbitrary file...
CVE Alert: CVE-2024-13777
Vulnerability Summary: CVE-2024-13777 The ZoomSounds - WordPress Wave Audio Player with Playlist plugin for WordPress is vulnerable to PHP Object...
CVE Alert: CVE-2024-13811
Vulnerability Summary: CVE-2024-13811 The Lafka - Multi Store Burger - Pizza & Food Delivery WooCommerce Theme theme for WordPress is...
CVE Alert: CVE-2024-13779
Vulnerability Summary: CVE-2024-13779 The Hero Mega Menu - Responsive WordPress Menu Plugin plugin for WordPress is vulnerable to Reflected Cross-Site...
CVE Alert: CVE-2024-13839
Vulnerability Summary: CVE-2024-13839 The Staff Directory Plugin: Company Directory plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to...
CVE Alert: CVE-2024-5667
Vulnerability Summary: CVE-2024-5667 Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled Featherlight.js JavaScript library...
CVE Alert: CVE-2024-13815
Vulnerability Summary: CVE-2024-13815 The The Listingo theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to,...
CVE Alert: CVE-2024-13809
Vulnerability Summary: CVE-2024-13809 The Hero Slider - WordPress Slider Plugin plugin for WordPress is vulnerable to SQL Injection via several...
CVE Alert: CVE-2024-13810
Vulnerability Summary: CVE-2024-13810 The Zass - WooCommerce Theme for Handmade Artists and Artisans theme for WordPress is vulnerable to unauthorized...
CVE Alert: CVE-2025-0956
Vulnerability Summary: CVE-2025-0956 The WooCommerce Recover Abandoned Cart plugin for WordPress is vulnerable to PHP Object Injection in all versions...
CVE Alert: CVE-2025-25015
Vulnerability Summary: CVE-2025-25015 Prototype pollution in Kibana leads to arbitrary code execution via a crafted file upload and specifically crafted...
CVE Alert: CVE-2025-1515
Vulnerability Summary: CVE-2025-1515 The WP Real Estate Manager plugin for WordPress is vulnerable to Authentication Bypass in all versions up...
CVE Alert: CVE-2025-0954
Vulnerability Summary: CVE-2025-0954 The WP Online Contract plugin for WordPress is vulnerable to unauthorized access due to a missing capability...
CVE Alert: CVE-2024-11153
Vulnerability Summary: CVE-2024-11153 The Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More plugin...
CVE Alert: CVE-2024-12281
Vulnerability Summary: CVE-2024-12281 The Homey theme for WordPress is vulnerable to privilege escalation in all versions up to, and including,...
CVE Alert: CVE-2024-11951
Vulnerability Summary: CVE-2024-11951 The Homey Login Register plugin for WordPress is vulnerable to privilege escalation in all versions up to,...
CVE Alert: CVE-2024-13423
Vulnerability Summary: CVE-2024-13423 The Sparkling theme for WordPress is vulnerable to unauthorized plugin activation/deactivation due to a missing capability check...
CVE Alert: CVE-2024-12650
Vulnerability Summary: CVE-2024-12650 An attacker with low privileges can manipulate the requested memory size, causing the application to use an...
CVE Alert: CVE-2025-1702
Vulnerability Summary: CVE-2025-1702 The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for...
CVE Alert: CVE-2024-13147
Vulnerability Summary: CVE-2024-13147 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Merkur Software B2B...
