CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-31093	WordPress RPS Include Content <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in redpixelstudios RPS Include Content allows DOM-Based XSS. This issue affects RPS Include Content: from n/a through 1.2.1. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31090	WordPress Dropdown Multisite selector < 0.9.4 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alordiel Dropdown Multisite selector allows Stored XSS. This issue affects Dropdown Multisite selector: from n/a through n/a. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31088	WordPress Paid Member Subscriptions <= 2.14.3 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cozmoslabs Paid Member Subscriptions allows Stored XSS. This issue affects Paid Member Subscriptions: from n/a through 2.14.3. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31083	WordPress Leaky Paywall <= 4.21.7 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ZEEN101 Leaky Paywall allows Stored XSS. This issue affects Leaky Paywall: from n/a through 4.21.7. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31079	WordPress Usermaven plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in usermaven Usermaven allows Cross Site Request Forgery. This issue affects Usermaven: from n/a through 1.2.1. CVSS: MEDIUM (4.3) EPSS Score: 0.02% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31077	WordPress Ultimate Blocks plugin <= 3.2.7 - Cross Site Scripting (XSS) vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ultimate Blocks Ultimate Blocks allows DOM-Based XSS. This issue affects Ultimate Blocks: from n/a through 3.2.7. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31076	WordPress WP Compress for MainWP plugin <= 6.30.03 - Server Side Request Forgery (SSRF) vulnerability Description: Server-Side Request Forgery (SSRF) vulnerability in WP Compress WP Compress for MainWP allows Server Side Request Forgery. This issue affects WP Compress for MainWP: from n/a through 6.30.03. CVSS: MEDIUM (4.9) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31075	WordPress MicroPayments plugin <= 2.9.29 - Cross Site Scripting (XSS) vulnerability Description: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in videowhisper MicroPayments allows Stored XSS. This issue affects MicroPayments: from n/a through 2.9.29. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-31073	WordPress Unlimited <= 1.45 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Compete Themes Unlimited allows Stored XSS. This issue affects Unlimited: from n/a through 1.45. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)
CVE-2025-27001	WordPress Shipmondo plugin <= 5.0.3 - Authenticated Arbitrary WordPress Option Disclosure vulnerability Description: Insertion of Sensitive Information Into Sent Data vulnerability in Shipmondo Shipmondo – A complete shipping solution for WooCommerce allows Retrieve Embedded Sensitive Data.This issue affects Shipmondo – A complete shipping solution for WooCommerce: from n/a through 5.0.3. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE March 28th, 2025 (3 months ago)