CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-31827 |
Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in vlad.olaru Fonto allows Path Traversal. This issue affects Fonto: from n/a through 1.2.2.
CVSS: MEDIUM (4.9) EPSS Score: 0.05%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31825 |
Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in pixelgrade Category Icon allows Path Traversal. This issue affects Category Icon: from n/a through 1.0.0.
CVSS: MEDIUM (4.9) EPSS Score: 0.05%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31800 |
Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in publitio Publitio allows Path Traversal. This issue affects Publitio: from n/a through 2.1.8.
CVSS: MEDIUM (6.5) EPSS Score: 0.05%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31795 |
Description: Missing Authorization vulnerability in Plugin Devs Shopify to WooCommerce Migration allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Shopify to WooCommerce Migration: from n/a through 1.3.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.05%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31794 |
Description: Missing Authorization vulnerability in Web Ready Now WR Price List Manager For Woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WR Price List Manager For Woocommerce: from n/a through 1.0.8.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31789 |
Description: Missing Authorization vulnerability in Matat Technologies TextMe SMS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects TextMe SMS: from n/a through 1.9.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31768 |
Description: Missing Authorization vulnerability in OTWthemes Widget Manager Light allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Widget Manager Light: from n/a through 1.18.
CVSS: MEDIUM (6.5) EPSS Score: 0.05%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31758 |
Description: Missing Authorization vulnerability in BinaryCarpenter Free Woocommerce Product Table View allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Free Woocommerce Product Table View: from n/a through 1.78.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31746 |
Description: Missing Authorization vulnerability in Think201 Clients allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Clients: from n/a through 1.1.4.
CVSS: MEDIUM (6.4) EPSS Score: 0.04%
April 3rd, 2025 (2 months ago)
|
|
CVE-2025-31739 |
Description: Missing Authorization vulnerability in Manuel Schmalstieg Minimalistic Event Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Minimalistic Event Manager: from n/a through 1.1.1.
CVSS: MEDIUM (6.4) EPSS Score: 0.04%
April 3rd, 2025 (2 months ago)
|