Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-30608
WordPress WordPress SQL Backup - <= <= 3.5.2 Cross Site Request Forgery (CSRF) Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in Anthony WordPress SQL Backup allows Stored XSS. This issue affects WordPress SQL Backup: from n/a through 3.5.2.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30604
WordPress JiangQie Official Website Mini Program plugin <= 1.8.2 - SQL Injection Vulnerability
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in jiangqie JiangQie Official Website Mini Program allows Blind SQL Injection. This issue affects JiangQie Official Website Mini Program: from n/a through 1.8.2.

CVSS: HIGH (7.6)

EPSS Score: 0.04%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30603
WordPress CopyLink plugin <= 1.1 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in DEJAN CopyLink allows Stored XSS. This issue affects CopyLink: from n/a through 1.1.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30602
WordPress Related Posts via Categories plugin <= 2.1.2 - CSRF to Stored XSS vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alphasis Related Posts via Categories allows Stored XSS. This issue affects Related Posts via Categories: from n/a through 2.1.2.

CVSS: HIGH (7.1)

EPSS Score: 0.03%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30590
WordPress Flickr set slideshows - <= <= 0.9 SQL Injection Vulnerability
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dourou Flickr set slideshows allows SQL Injection. This issue affects Flickr set slideshows: from n/a through 0.9.

CVSS: HIGH (8.5)

EPSS Score: 0.03%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30588
WordPress Map Contact plugin <= 3.0.4 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in ryan_xantoo Map Contact allows Stored XSS. This issue affects Map Contact: from n/a through 3.0.4.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30587
WordPress LH OGP Meta plugin <= 1.73 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in shawfactor LH OGP Meta allows Stored XSS. This issue affects LH OGP Meta: from n/a through 1.73.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30586
WordPress cTabs plugin <= 1.3 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in bbodine1 cTabs allows Stored XSS. This issue affects cTabs: from n/a through 1.3.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30584
WordPress AlphaOmega Captcha & Anti-Spam Filter plugin <= 3.3 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in alphaomegaplugins AlphaOmega Captcha & Anti-Spam Filter allows Stored XSS. This issue affects AlphaOmega Captcha & Anti-Spam Filter: from n/a through 3.3.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30583
WordPress Pro Rank Tracker plugin <= 1.0.0 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in ProRankTracker Pro Rank Tracker allows Stored XSS. This issue affects Pro Rank Tracker: from n/a through 1.0.0.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)