CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-26577	WordPress DX-auto-publish plugin <= 1.2 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in daxiawp DX-auto-publish allows Stored XSS. This issue affects DX-auto-publish: from n/a through 1.2. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26572	WordPress WP PHPList Plugin <= 1.7 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in jesseheap WP PHPList allows Cross Site Request Forgery. This issue affects WP PHPList: from n/a through 1.7. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26571	WordPress Wibiya Toolbar plugin <= 2.0 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in wibiya Wibiya Toolbar allows Cross Site Request Forgery. This issue affects Wibiya Toolbar: from n/a through 2.0. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26570	WordPress Glance That plugin <= 4.9 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in uamv Glance That allows Cross Site Request Forgery. This issue affects Glance That: from n/a through 4.9. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26569	WordPress Post Thumbs Plugin <= 1.5 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in callmeforsox Post Thumbs allows Stored XSS. This issue affects Post Thumbs: from n/a through 1.5. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26568	WordPress Easy Amazon Product Information plugin <= 4.0.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in jensmueller Easy Amazon Product Information allows Stored XSS. This issue affects Easy Amazon Product Information: from n/a through 4.0.1. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26562	WordPress RSS FIlter Plugin <= 1.2 - CSRF to Stored Cross Site Scripting (XSS) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Shambhu Patnaik RSS Filter allows Stored XSS. This issue affects RSS Filter: from n/a through 1.2. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26552	WordPress Naver Syndication V2 plugin <= 0.8.3 - CSRF to Stored Cross-Site Scripting vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in badrHan Naver Syndication V2 allows Stored XSS. This issue affects Naver Syndication V2: from n/a through 0.8.3. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26551	WordPress Bootstrap collapse plugin <= 1.0.4 - CSRF to Stored Cross-Site Scripting vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sureshdsk Bootstrap collapse allows Stored XSS. This issue affects Bootstrap collapse: from n/a through 1.0.4. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)
CVE-2025-26550	WordPress Global Meta Keyword & Description plugin <= 2.3 - CSRF to Cross-Site Scripting vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Kunal Shivale Global Meta Keyword & Description allows Stored XSS. This issue affects Global Meta Keyword & Description: from n/a through 2.3. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE February 14th, 2025 (5 months ago)