Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-31617
WordPress PostmarkApp Email Integrator plugin <= 2.4 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in Gagan Deep Singh PostmarkApp Email Integrator allows Cross Site Request Forgery. This issue affects PostmarkApp Email Integrator: from n/a through 2.4.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31616
WordPress Varnish WordPress plugin <= 1.7 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in AdminGeekZ Varnish WordPress allows Cross Site Request Forgery. This issue affects Varnish WordPress: from n/a through 1.7.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31615
WordPress Simple Contact Forms plugin <= 1.6.4 - CSRF to Stored XSS vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in owenr88 Simple Contact Forms allows Stored XSS. This issue affects Simple Contact Forms: from n/a through 1.6.4.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31613
WordPress AB Google Map Travel plugin <= 4.6 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in Aboobacker. AB Google Map Travel allows Cross Site Request Forgery. This issue affects AB Google Map Travel : from n/a through 4.6.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31585
WordPress Leadfox for WordPress plugin <= 2.1.8 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in leadfox Leadfox for WordPress allows Cross Site Request Forgery. This issue affects Leadfox for WordPress: from n/a through 2.1.8.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31583
WordPress WP Copy Media URL plugin <= 2.1 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in Ashish Ajani WP Copy Media URL allows Stored XSS. This issue affects WP Copy Media URL: from n/a through 2.1.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31570
WordPress Related Posts Widget with Thumbnails plugin <= 1.2 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in wp-buy Related Posts Widget with Thumbnails allows Stored XSS. This issue affects Related Posts Widget with Thumbnails: from n/a through 1.2.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31569
WordPress wordpress related Posts with thumbnails plugin <= 3.0.0.1 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in wp-buy wordpress related Posts with thumbnails allows Stored XSS. This issue affects wordpress related Posts with thumbnails: from n/a through 3.0.0.1.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31566
WordPress Rio Video Gallery plugin <= 2.3.6 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in riosisgroup Rio Video Gallery allows Stored XSS. This issue affects Rio Video Gallery: from n/a through 2.3.6.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 31st, 2025 (21 days ago)

CVE-2025-31547
WordPress Uptime Robot Plugin for WordPress plugin <= 2.3 - SQL Injection vulnerability
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aphotrax Uptime Robot Plugin for WordPress allows SQL Injection. This issue affects Uptime Robot Plugin for WordPress: from n/a through 2.3.

CVSS: HIGH (8.5)

EPSS Score: 0.03%

Source: CVE
March 31st, 2025 (21 days ago)