CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-28919 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shellbot Easy Image Display allows Stored XSS. This issue affects Easy Image Display: from n/a through 1.2.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28918 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in A. Jones Featured Image Thumbnail Grid allows Stored XSS. This issue affects Featured Image Thumbnail Grid: from n/a through 6.6.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28914 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ajay Sharma wordpress login form to anywhere allows Stored XSS. This issue affects wordpress login form to anywhere: from n/a through 0.2.
CVSS: MEDIUM (5.9) EPSS Score: 0.04%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28913 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Aftab Ali Muni WP Add Active Class To Menu Item allows Cross Site Request Forgery. This issue affects WP Add Active Class To Menu Item: from n/a through 1.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28912 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Muntasir Rahman Custom Dashboard Page allows Cross Site Request Forgery. This issue affects Custom Dashboard Page: from n/a through 1.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28910 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Ravinder Khurana WP Hide Admin Bar allows Cross Site Request Forgery. This issue affects WP Hide Admin Bar: from n/a through 2.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28909 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in edwardw WP No-Bot Question allows Cross Site Request Forgery. This issue affects WP No-Bot Question: from n/a through 0.1.7.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28908 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pipdig pipDisqus allows Stored XSS. This issue affects pipDisqus: from n/a through 1.6.
CVSS: MEDIUM (5.9) EPSS Score: 0.03%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28907 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rahul Arora WP Last Modified allows Stored XSS. This issue affects WP Last Modified: from n/a through 0.1.
CVSS: MEDIUM (5.9) EPSS Score: 0.04%
March 11th, 2025 (3 months ago)
|
|
CVE-2025-28906 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Thiago S.F. Skitter Slideshow allows Stored XSS. This issue affects Skitter Slideshow: from n/a through 2.5.2.
CVSS: MEDIUM (5.9) EPSS Score: 0.03%
March 11th, 2025 (3 months ago)
|