Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-23562 |
Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NotFound XLSXviewer allows Path Traversal. This issue affects XLSXviewer: from n/a through 2.1.1.
CVSS: HIGH (7.5) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23548 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bilal TAS Responsivity allows Reflected XSS. This issue affects Responsivity: from n/a through 0.0.6.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23535 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in clickandsell REAL WordPress Sidebar allows Stored XSS. This issue affects REAL WordPress Sidebar: from n/a through 0.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23512 |
Description: Missing Authorization vulnerability in Team118GROUP Team 118GROUP Agent allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Team 118GROUP Agent: from n/a through 1.6.0.
CVSS: HIGH (7.5) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23509 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound HyperComments allows Reflected XSS. This issue affects HyperComments: from n/a through 0.9.6.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23507 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Blrt Blrt WP Embed allows Reflected XSS. This issue affects Blrt WP Embed: from n/a through 1.6.9.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23506 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP IMAP Auth allows Reflected XSS. This issue affects WP IMAP Auth: from n/a through 4.0.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23503 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Customizable Captcha and Contact Us allows Reflected XSS. This issue affects Customizable Captcha and Contact Us: from n/a through 1.0.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23500 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Faaiq Ahmed, Technial Architect,[email protected] Simple Custom post type custom field allows Reflected XSS. This issue affects Simple Custom post type custom field: from n/a through 1.0.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|
|
CVE-2025-23498 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Translation.Pro allows Reflected XSS. This issue affects Translation.Pro: from n/a through 1.0.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 23rd, 2025 (3 months ago)
|