| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 114970 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-07-04 | CVE-2025-5567 | cve | The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'data-url' DOM element attribute in all versio... |
| 4.3 | 2025-07-04 | CVE-2025-5924 | cve | The WP Firebase Push Notification plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.0. This is due to missing or incorre... |
| 4.3 | 2025-07-04 | CVE-2025-5933 | cve | The RD Contacto plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect nonce validation ... |
| 6.5 | 2025-07-04 | CVE-2025-5956 | cve | The WP Human Resource Management plugin for WordPress is vulnerable to Arbitrary User Deletion due to a missing authorization within the ajax_delete_employee() function in versi... |
| 6.4 | 2025-07-04 | CVE-2025-6039 | cve | The ProcessingJS for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pjs4wp' shortcode in all versions up to, and in... |
| 6.1 | 2025-07-04 | CVE-2025-6041 | cve | The yContributors plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.5. This is due to missing or incorrect nonce validatio... |
| 6.4 | 2025-07-04 | CVE-2025-6729 | cve | The PayMaster for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 0.4.31 via the 'wp_ajax_paym_status�... |
| 6.5 | 2025-07-04 | CVE-2025-6739 | cve | The WPQuiz plugin for WordPress is vulnerable to SQL Injection via the 'id' attribute of the 'wpquiz' shortcode in all versions up to, and including, 0.4.2 d... |
| 5.3 | 2025-07-04 | CVE-2025-6786 | cve | The DocCheck Login plugin for WordPress is vulnerable to unauthorized post access in all versions up to, and including, 1.1.5. This is due to plugin redirecting a user to login ... |
| 6.4 | 2025-07-04 | CVE-2025-6787 | cve | The Smart Docs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'smartdocs_search' shortcode in all versions up to, and includin... |
| 6.4 | 2025-07-04 | CVE-2025-7046 | cve | The Portfolio for Elementor & Image Gallery | PowerFolio plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom JS Attributes of Plugin's widgets ... |
| 6.4 | 2025-07-03 | CVE-2024-5647 | cve | Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled Magnific Popups library (version 1.1.0) in various versions due to ins... |
| 6.4 | 2025-07-03 | CVE-2025-2540 | cve | Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled prettyPhoto library (version 3.1.6) in various versions due to insuffi... |
| 6.4 | 2025-07-03 | CVE-2025-2537 | cve | Multiple plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the plugin's bundled ThickBox JavaScript library (version 3.1) in various versions due to i... |
| 6.4 | 2025-07-03 | CVE-2025-5944 | cve | The Element Pack Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-caption’ attribute in all versions up to, and including, 8.... |
| 6.4 | 2025-07-02 | CVE-2025-2330 | cve | The All-in-One Addons for Elementor – WidgetKit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'button+modal' widget in all ve... |
| 6 | 2025-07-02 | CVE-2025-20308 | cve | A vulnerability in Cisco Spaces Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as... |
| 6.1 | 2025-07-02 | CVE-2025-20310 | cve | A vulnerability in the web UI of Cisco Enterprise Chat and Email (ECE) could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack agai... |
| 4.8 | 2025-07-02 | CVE-2025-20307 | cve | A vulnerability in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an authenticated, remote attacker to to conduct cross-site sc... |
| 5.5 | 2025-07-02 | CVE-2025-6017 | cve | A flaw was found in Red Hat Advanced Cluster Management through versions 2.10, before 2.10.7, 2.11, before 2.11.4, and 2.12, before 2.12.4. This vulnerability allows an unprivil... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 114970 |
