Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-30783 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in jgwhite33 WP Google Review Slider allows SQL Injection. This issue affects WP Google Review Slider: from n/a through 16.0.
CVSS: HIGH (8.2) EPSS Score: 0.02%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30775 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AmentoTech Private Limited WPGuppy allows SQL Injection. This issue affects WPGuppy: from n/a through 1.1.3.
CVSS: HIGH (8.5) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30773 |
Description: Deserialization of Untrusted Data vulnerability in Cozmoslabs TranslatePress allows Object Injection. This issue affects TranslatePress: from n/a through 2.9.6.
CVSS: HIGH (7.2) EPSS Score: 0.06%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30772 |
Description: Missing Authorization vulnerability in WPClever WPC Smart Upsell Funnel for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Upsell Funnel for WooCommerce: from n/a through 3.0.4.
CVSS: HIGH (8.8) EPSS Score: 0.04%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30769 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in alexvtn WIP WooCarousel Lite allows Stored XSS. This issue affects WIP WooCarousel Lite: from n/a through 1.1.7.
CVSS: HIGH (7.1) EPSS Score: 0.02%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30765 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPPOOL FlexStock allows Blind SQL Injection. This issue affects FlexStock: from n/a through 3.13.1.
CVSS: HIGH (7.6) EPSS Score: 0.04%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-28939 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Google Calendar Manager allows Blind SQL Injection. This issue affects WP Google Calendar Manager: from n/a through 2.1.
CVSS: HIGH (8.5) EPSS Score: 0.04% SSVC Exploitation: none
March 26th, 2025 (27 days ago)
|
|
CVE-2025-28935 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in puzich Fancybox Plus allows Reflected XSS. This issue affects Fancybox Plus: from n/a through 1.0.1.
CVSS: HIGH (7.1) EPSS Score: 0.04% SSVC Exploitation: none
March 26th, 2025 (27 days ago)
|
|
CVE-2025-28934 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Simple Post Series allows Reflected XSS. This issue affects Simple Post Series: from n/a through 2.4.4.
CVSS: HIGH (7.1) EPSS Score: 0.04% SSVC Exploitation: none
March 26th, 2025 (27 days ago)
|
|
CVE-2025-28928 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sureshdsk Are you robot google recaptcha for wordpress allows Reflected XSS. This issue affects Are you robot google recaptcha for wordpress: from n/a through 2.2.
CVSS: HIGH (7.1) EPSS Score: 0.04% SSVC Exploitation: none
March 26th, 2025 (27 days ago)
|