Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-30586
WordPress cTabs plugin <= 1.3 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in bbodine1 cTabs allows Stored XSS. This issue affects cTabs: from n/a through 1.3.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30584
WordPress AlphaOmega Captcha & Anti-Spam Filter plugin <= 3.3 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in alphaomegaplugins AlphaOmega Captcha & Anti-Spam Filter allows Stored XSS. This issue affects AlphaOmega Captcha & Anti-Spam Filter: from n/a through 3.3.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30583
WordPress Pro Rank Tracker plugin <= 1.0.0 - CSRF to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in ProRankTracker Pro Rank Tracker allows Stored XSS. This issue affects Pro Rank Tracker: from n/a through 1.0.0.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30578
WordPress AdSense Privacy Policy plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in hotvanrod AdSense Privacy Policy allows Stored XSS. This issue affects AdSense Privacy Policy: from n/a through 1.1.1.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30577
WordPress Browser Address Bar Color plugin <= 3.3 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in mendibass Browser Address Bar Color allows Stored XSS. This issue affects Browser Address Bar Color: from n/a through 3.3.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30572
WordPress Simple Rating plugin <= 1.4 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in Igor Yavych Simple Rating allows Stored XSS. This issue affects Simple Rating: from n/a through 1.4.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30571
WordPress STEdb Forms - <= <= 1.0.4 SQL Injection Vulnerability
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in STEdb Corp. STEdb Forms allows SQL Injection. This issue affects STEdb Forms: from n/a through 1.0.4.

CVSS: HIGH (7.6)

EPSS Score: 0.03%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30570
WordPress دکمه، شبکه اجتماعی خرید - <= <= 2.0.6 SQL Injection Vulnerability
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AliRezaMohammadi دکمه، شبکه اجتماعی خرید allows SQL Injection. This issue affects دکمه، شبکه اجتماعی خرید: from n/a through 2.0.6.

CVSS: HIGH (7.6)

EPSS Score: 0.03%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30569
WordPress WP Featured Entries - <= <= 1.0 SQL Injection Vulnerability
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Jahertor WP Featured Entries allows SQL Injection. This issue affects WP Featured Entries: from n/a through 1.0.

CVSS: HIGH (8.5)

EPSS Score: 0.03%

Source: CVE
March 24th, 2025 (29 days ago)

CVE-2025-30565
WordPress banner-manager plugin <= 16.04.19 - CSRF to Stored XSS vulnerability
Description: Cross-Site Request Forgery (CSRF) vulnerability in karrikas banner-manager allows Stored XSS. This issue affects banner-manager: from n/a through 16.04.19.

CVSS: HIGH (7.1)

EPSS Score: 0.02%

Source: CVE
March 24th, 2025 (29 days ago)