CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-25126	WordPress ZMSEO plugin <= 1.14.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in zmseo ZMSEO allows Stored XSS. This issue affects ZMSEO: from n/a through 1.14.1. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25125	WordPress Fyrebox Quizzes plugin <= 2.7 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in CyrilG Fyrebox Quizzes allows Stored XSS. This issue affects Fyrebox Quizzes: from n/a through 2.7. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25123	WordPress Easy Related Posts plugin <= 2.0.2 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in xdark Easy Related Posts allows Stored XSS. This issue affects Easy Related Posts: from n/a through 2.0.2. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25116	WordPress Link to URL / Post plugin <=1.3 - SQL Injection vulnerability Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in sudipto Link to URL / Post allows Blind SQL Injection. This issue affects Link to URL / Post: from n/a through 1.3. CVSS: HIGH (7.6) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25104	WordPress URL-Preview-Box plugin <= 1.20 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in mraliende URL-Preview-Box allows Cross Site Request Forgery. This issue affects URL-Preview-Box: from n/a through 1.20. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25088	WordPress WP Keyword Monitor Plugin <=1.0.5 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in blackus3r WP Keyword Monitor allows Stored XSS. This issue affects WP Keyword Monitor: from n/a through 1.0.5. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25075	WordPress Show notice or message on admin area plugin <= 2.0 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Venugopal Show notice or message on admin area allows Stored XSS. This issue affects Show notice or message on admin area: from n/a through 2.0. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25074	WordPress WP Social Stream plugin <= 1.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Nirmal Kumar Ram WP Social Stream allows Stored XSS. This issue affects WP Social Stream: from n/a through 1.1. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25072	WordPress WP Admin Custom Page plugin <= 1.5.0 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in thunderbax WP Admin Custom Page allows Stored XSS. This issue affects WP Admin Custom Page: from n/a through 1.5.0. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)
CVE-2025-25071	WordPress Vignette Ads plugin <= 0.2 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in topplugins Vignette Ads allows Stored XSS. This issue affects Vignette Ads: from n/a through 0.2. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 8th, 2025 (4 months ago)