| Page(s) : 1 2 3 4 [5] 6 7 8 9 10 11 12 13 14 15 ... | Result(s) : 302376 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-07-18 | CVE-2025-5752 | cve | The Vertical scroll image slideshow gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width’ parameter in all versions up to, and including, 11.... |
| 6.4 | 2025-07-18 | CVE-2025-5754 | cve | The Useful Tab Block – Responsive & AMP-Compatible plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter in all versions up to, and inc... |
| 6.4 | 2025-07-18 | CVE-2025-5767 | cve | The Crowdfunding for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width’ parameter in all versions up to, and including, 3.1.14 due to ... |
| 6.4 | 2025-07-18 | CVE-2025-5800 | cve | The Testimonial Post type plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘auto_play’ parameter in all versions up to, and including, 1.2.1 due to insu... |
| 5.3 | 2025-07-18 | CVE-2025-5811 | cve | The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the Init() function in all versi... |
| 9.8 | 2025-07-18 | CVE-2025-6222 | cve | The WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User Wallet theme for WordPress is vulnerable to arbitrary file uploads due to missing ... |
| 6.5 | 2025-07-18 | CVE-2025-6717 | cve | The B1.lt plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 2.2.56 due to insufficient escaping on the u... |
| 8.8 | 2025-07-18 | CVE-2025-6718 | cve | The B1.lt plugin for WordPress is vulnerable to SQL Injection due to a missing capability check on the b1_run_query AJAX action in all versions up to, and including, 2.2.56. Thi... |
| 4.4 | 2025-07-18 | CVE-2025-6719 | cve | The Terms descriptions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.4.8 due to insufficient input... |
| 4.3 | 2025-07-18 | CVE-2025-6726 | cve | The Block Editor Gallery Slider plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the classic_gallery_slider_options()... |
| 9.1 | 2025-07-18 | CVE-2025-7643 | cve | The Attachment Manager plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the handle_actions() function in all versions up... |
| 7.5 | 2025-07-18 | CVE-2025-7438 | cve | The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'install_and_activate_plugin' func... |
| 6.5 | 2025-07-18 | CVE-2025-7772 | cve | The Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 16.8 via t... |
| N/A | 2025-07-18 | CVE-2024-27779 | cve | An insufficient session expiration vulnerability [CWE-613] in FortiSandbox FortiSandbox version 4.4.4 and below, version 4.2.6 and below, 4.0 all versions, 3.2 all versions and ... |
| N/A | 2025-07-18 | CVE-2024-32124 | cve | An improper access control vulnerability [CWE-284] in FortiIsolator version 2.4.4, version 2.4.3, 2.3 all versions logging component may allow a remote authenticated read-only a... |
| N/A | 2025-07-18 | CVE-2025-26854 | cve | A SQL injection in Articles Good Search extension 1.0.0 - 1.2.4.0011 for Joomla allows attackers to execute arbitrary SQL commands. |
| N/A | 2025-07-18 | CVE-2025-26855 | cve | A SQL injection in Articles Calendar extension 1.0.0 - 1.0.1.0007 for Joomla allows attackers to execute arbitrary SQL commands. |
| N/A | 2025-07-18 | CVE-2025-38349 | cve | In the Linux kernel, the following vulnerability has been resolved: eventpoll: don't decrement ep refcount while still holding the ep mutex Jann Horn points out that epol... |
| N/A | 2025-07-18 | CVE-2025-6023 | cve | An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks. The vulnerability was introduced in Grafana v11.5.0. The open re... |
| N/A | 2025-07-18 | CVE-2025-6197 | cve | An open redirect vulnerability has been identified in Grafana OSS organization switching functionality. Prerequisites for exploitation: - Multiple organizations must exist in... |
| Page(s) : 1 2 3 4 [5] 6 7 8 9 10 11 12 13 14 15 ... | Result(s) : 302376 |
