CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-30604	WordPress JiangQie Official Website Mini Program plugin <= 1.8.2 - SQL Injection Vulnerability Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in jiangqie JiangQie Official Website Mini Program allows Blind SQL Injection. This issue affects JiangQie Official Website Mini Program: from n/a through 1.8.2. CVSS: HIGH (7.6) EPSS Score: 0.04% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30603	WordPress CopyLink plugin <= 1.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in DEJAN CopyLink allows Stored XSS. This issue affects CopyLink: from n/a through 1.1. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30602	WordPress Related Posts via Categories plugin <= 2.1.2 - CSRF to Stored XSS vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alphasis Related Posts via Categories allows Stored XSS. This issue affects Related Posts via Categories: from n/a through 2.1.2. CVSS: HIGH (7.1) EPSS Score: 0.03% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30590	WordPress Flickr set slideshows - <= <= 0.9 SQL Injection Vulnerability Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dourou Flickr set slideshows allows SQL Injection. This issue affects Flickr set slideshows: from n/a through 0.9. CVSS: HIGH (8.5) EPSS Score: 0.03% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30588	WordPress Map Contact plugin <= 3.0.4 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in ryan_xantoo Map Contact allows Stored XSS. This issue affects Map Contact: from n/a through 3.0.4. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30587	WordPress LH OGP Meta plugin <= 1.73 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in shawfactor LH OGP Meta allows Stored XSS. This issue affects LH OGP Meta: from n/a through 1.73. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30586	WordPress cTabs plugin <= 1.3 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in bbodine1 cTabs allows Stored XSS. This issue affects cTabs: from n/a through 1.3. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30584	WordPress AlphaOmega Captcha & Anti-Spam Filter plugin <= 3.3 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in alphaomegaplugins AlphaOmega Captcha & Anti-Spam Filter allows Stored XSS. This issue affects AlphaOmega Captcha & Anti-Spam Filter: from n/a through 3.3. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30583	WordPress Pro Rank Tracker plugin <= 1.0.0 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in ProRankTracker Pro Rank Tracker allows Stored XSS. This issue affects Pro Rank Tracker: from n/a through 1.0.0. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30578	WordPress AdSense Privacy Policy plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in hotvanrod AdSense Privacy Policy allows Stored XSS. This issue affects AdSense Privacy Policy: from n/a through 1.1.1. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)