CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-31617	WordPress PostmarkApp Email Integrator plugin <= 2.4 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Gagan Deep Singh PostmarkApp Email Integrator allows Cross Site Request Forgery. This issue affects PostmarkApp Email Integrator: from n/a through 2.4. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31616	WordPress Varnish WordPress plugin <= 1.7 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in AdminGeekZ Varnish WordPress allows Cross Site Request Forgery. This issue affects Varnish WordPress: from n/a through 1.7. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31615	WordPress Simple Contact Forms plugin <= 1.6.4 - CSRF to Stored XSS vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in owenr88 Simple Contact Forms allows Stored XSS. This issue affects Simple Contact Forms: from n/a through 1.6.4. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31613	WordPress AB Google Map Travel plugin <= 4.6 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Aboobacker. AB Google Map Travel allows Cross Site Request Forgery. This issue affects AB Google Map Travel : from n/a through 4.6. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31585	WordPress Leadfox for WordPress plugin <= 2.1.8 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in leadfox Leadfox for WordPress allows Cross Site Request Forgery. This issue affects Leadfox for WordPress: from n/a through 2.1.8. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31583	WordPress WP Copy Media URL plugin <= 2.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Ashish Ajani WP Copy Media URL allows Stored XSS. This issue affects WP Copy Media URL: from n/a through 2.1. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31570	WordPress Related Posts Widget with Thumbnails plugin <= 1.2 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in wp-buy Related Posts Widget with Thumbnails allows Stored XSS. This issue affects Related Posts Widget with Thumbnails: from n/a through 1.2. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31569	WordPress wordpress related Posts with thumbnails plugin <= 3.0.0.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in wp-buy wordpress related Posts with thumbnails allows Stored XSS. This issue affects wordpress related Posts with thumbnails: from n/a through 3.0.0.1. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31566	WordPress Rio Video Gallery plugin <= 2.3.6 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in riosisgroup Rio Video Gallery allows Stored XSS. This issue affects Rio Video Gallery: from n/a through 2.3.6. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 31st, 2025 (3 months ago)
CVE-2025-31547	WordPress Uptime Robot Plugin for WordPress plugin <= 2.3 - SQL Injection vulnerability Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aphotrax Uptime Robot Plugin for WordPress allows SQL Injection. This issue affects Uptime Robot Plugin for WordPress: from n/a through 2.3. CVSS: HIGH (8.5) EPSS Score: 0.03% Source: CVE March 31st, 2025 (3 months ago)