CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-31792 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in piotnetdotcom Piotnet Forms allows Stored XSS. This issue affects Piotnet Forms: from n/a through 1.0.30.
CVSS: MEDIUM (5.9) EPSS Score: 0.03%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31791 |
Description: Missing Authorization vulnerability in Oliver Boyers Pin Generator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Pin Generator: from n/a through 2.0.0.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31790 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Binsaifullah Posten allows DOM-Based XSS. This issue affects Posten: from n/a through 0.0.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31788 |
Description: Insertion of Sensitive Information into Log File vulnerability in smackcoders AIO Performance Profiler, Monitor, Optimize, Compress & Debug allows Retrieve Embedded Sensitive Data. This issue affects AIO Performance Profiler, Monitor, Optimize, Compress & Debug: from n/a through 1.2.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31787 |
Description: Missing Authorization vulnerability in Brady Vercher Cue allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Cue: from n/a through 2.4.4.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31786 |
Description: Missing Authorization vulnerability in Travis Simple Icons allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Simple Icons: from n/a through 2.8.4.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31785 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Clearbit Clearbit Reveal allows Cross Site Request Forgery. This issue affects Clearbit Reveal: from n/a through 1.0.6.
CVSS: MEDIUM (5.4) EPSS Score: 0.02%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31784 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Rudy Susanto Embed Extended – Embed Maps, Videos, Websites, Source Codes, and more allows Cross Site Request Forgery. This issue affects Embed Extended – Embed Maps, Videos, Websites, Source Codes, and more: from n/a through 1.4.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31783 |
WordPress Leartes TRY Exchange Rates Plugin <= 2.1 - Stored Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Leartes.NET Leartes TRY Exchange Rates allows Stored XSS. This issue affects Leartes TRY Exchange Rates: from n/a through 2.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
April 1st, 2025 (3 months ago)
|
|
CVE-2025-31782 |
Description: Missing Authorization vulnerability in pupunzi mb.YTPlayer allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects mb.YTPlayer: from n/a through 3.3.8.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 1st, 2025 (3 months ago)
|