CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-28932	WordPress Insert Code plugin <= 2.4 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in BCS Website Solutions Insert Code allows Stored XSS. This issue affects Insert Code: from n/a through 2.4. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28931	WordPress WordPress Hashtags plugin <= 0.3.2 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in DevriX Hashtags allows Stored XSS. This issue affects Hashtags: from n/a through 0.3.2. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28925	WordPress WATI Chat and Notification plugin <= 1.1.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Hieu Nguyen WATI Chat and Notification allows Stored XSS. This issue affects WATI Chat and Notification: from n/a through 1.1.2. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28923	WordPress No Disposable Email plugin <= 2.5.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in philippe No Disposable Email allows Stored XSS. This issue affects No Disposable Email: from n/a through 2.5.1. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28922	WordPress Go To Top plugin <= 0.0.8 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Terence D. Go To Top allows Stored XSS. This issue affects Go To Top: from n/a through 0.0.8. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28905	WordPress Featured Posts Grid plugin <= 1.7 - CSRF to Stored XSS vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chaser324 Featured Posts Grid allows Stored XSS. This issue affects Featured Posts Grid: from n/a through 1.7. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28901	WordPress Members page only for logged in users plugin <= 1.4.2 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Naren Members page only for logged in users allows Stored XSS. This issue affects Members page only for logged in users: from n/a through 1.4.2. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28900	WordPress TabGarb Pro plugin <= 2.6 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in webgarb TabGarb Pro allows Stored XSS. This issue affects TabGarb Pro: from n/a through 2.6. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28897	WordPress Domain Theme plugin <= 1.3 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Steveorevo Domain Theme allows Stored XSS. This issue affects Domain Theme: from n/a through 1.3. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 11th, 2025 (3 months ago)
CVE-2025-28895	WordPress Custom top bar plugin <= 2.0.2 - CSRF to Stored XSS vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sumanbiswas013 Custom top bar allows Stored XSS. This issue affects Custom top bar: from n/a through 2.0.2. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE March 11th, 2025 (3 months ago)