Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-26989 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in softdiscover Zigaform – Form Builder Lite allows Stored XSS. This issue affects Zigaform – Form Builder Lite: from n/a through 7.4.2.
CVSS: HIGH (7.1) EPSS Score: 0.03%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26984 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows Reflected XSS. This issue affects SMS Alert Order Notifications – WooCommerce: from n/a through 3.7.8.
CVSS: HIGH (7.1) EPSS Score: 0.03%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26967 |
Description: Deserialization of Untrusted Data vulnerability in Stiofan Events Calendar for GeoDirectory allows Object Injection. This issue affects Events Calendar for GeoDirectory: from n/a through 2.3.14.
CVSS: HIGH (8.8) EPSS Score: 0.06%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26918 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in enituretechnology Small Package Quotes – Unishippers Edition allows Reflected XSS. This issue affects Small Package Quotes – Unishippers Edition: from n/a through 2.4.9.
CVSS: HIGH (7.1) EPSS Score: 0.03%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26917 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HasThemes WP Templata allows Reflected XSS. This issue affects WP Templata: from n/a through 1.0.7.
CVSS: HIGH (7.1) EPSS Score: 0.03%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26914 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bowo Variable Inspector allows Reflected XSS. This issue affects Variable Inspector: from n/a through 2.6.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26885 |
Description: Deserialization of Untrusted Data vulnerability in Brent Jett Assistant allows Object Injection. This issue affects Assistant: from n/a through 1.5.1.
CVSS: HIGH (7.2) EPSS Score: 0.06%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26879 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cristián Lávaque s2Member Pro allows Reflected XSS. This issue affects s2Member Pro: from n/a through 241216.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26589 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound IE CSS3 Support allows Reflected XSS. This issue affects IE CSS3 Support: from n/a through 2.0.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (about 2 months ago)
|
|
CVE-2025-26588 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound TTT Crop allows Reflected XSS. This issue affects TTT Crop: from n/a through 1.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (about 2 months ago)
|