| Page(s) : 1 ... 28 29 30 31 32 33 34 35 36 37 [38] 39 40 41 42 43 44 45 46 47 48 ... | Result(s) : 324165 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-06-15 | CVE-2025-6089 | cve | A vulnerability has been found in Astun Technology iShare Maps 5.4.0 and classified as problematic. This vulnerability affects unknown code of the file atCheckJS.aspx. The manip... |
| 6.4 | 2025-06-14 | CVE-2025-4667 | cve | The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ssa_admin_... |
| 6.4 | 2025-06-14 | CVE-2025-5238 | cve | The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in all versions up to, and including, 4.5.0 due to insuffi... |
| 6.4 | 2025-06-14 | CVE-2025-5337 | cve | The Slider, Gallery, and Carousel by MetaSlider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘aria-label’ parameter in all versions up to, and inclu... |
| 7.2 | 2025-06-14 | CVE-2025-3234 | cve | The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.8.8. Thi... |
| 7.2 | 2025-06-14 | CVE-2025-5487 | cve | The AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the fi... |
| 5.9 | 2025-06-14 | CVE-2025-4187 | cve | The UserPro - Community and User Profile WordPress Plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 5.1.10 via the userpro_... |
| 8.1 | 2025-06-14 | CVE-2025-4200 | cve | The Zagg - Electronics & Accessories WooCommerce WordPress Theme theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.4.1 via the lo... |
| 6.4 | 2025-06-14 | CVE-2025-4216 | cve | The DIOT SCADA with MQTT plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'diot' shortcode in all versions up to, and including,... |
| 4.3 | 2025-06-14 | CVE-2025-4592 | cve | The AI Image Lab – Free AI Image Generator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.6. This is due to missing o... |
| 6.4 | 2025-06-14 | CVE-2025-5336 | cve | The Click to Chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-no_number’ parameter in all versions up to, and including, 4.22 to insufficient... |
| 6.4 | 2025-06-14 | CVE-2025-5589 | cve | The StreamWeasels Kick Integration plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘status-classic-offline-text’ parameter in all versions up to, and i... |
| 6.1 | 2025-06-14 | CVE-2025-6040 | cve | The Easy Flashcards plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.1. This is due to missing or incorrect nonce validat... |
| 6.1 | 2025-06-14 | CVE-2025-6055 | cve | The Zen Sticky Social plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.3. This is due to missing or incorrect nonce valid... |
| 6.4 | 2025-06-14 | CVE-2025-6061 | cve | The kk Youtube Video plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'kkytv' shortcode in all versions up to, and including, 0.... |
| 4.3 | 2025-06-14 | CVE-2025-6062 | cve | The Yougler Blogger Profile Page plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, v1.01. This is due to missing or incorrec... |
| 6.1 | 2025-06-14 | CVE-2025-6063 | cve | The XiSearch bar plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6. This is due to missing or incorrect nonce validation... |
| 6.1 | 2025-06-14 | CVE-2025-6064 | cve | The WP URL Shortener plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2. This is due to missing or incorrect nonce valida... |
| 9.1 | 2025-06-14 | CVE-2025-6065 | cve | The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all version... |
| 6.5 | 2025-06-14 | CVE-2025-6070 | cve | The Restrict File Access plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.2 via the output() function. This makes it possible ... |
| Page(s) : 1 ... 28 29 30 31 32 33 34 35 36 37 [38] 39 40 41 42 43 44 45 46 47 48 ... | Result(s) : 324165 |
