CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-26960 |
Description: Missing Authorization vulnerability in enituretechnology Small Package Quotes – Unishippers Edition allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Small Package Quotes – Unishippers Edition: from n/a through 2.4.9.
CVSS: MEDIUM (6.5) EPSS Score: 0.05%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26952 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Business Card Block allows Stored XSS. This issue affects Business Card Block: from n/a through 1.0.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26949 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Team Section Block allows Stored XSS. This issue affects Team Section Block: from n/a through 1.0.9.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26948 |
Description: Missing Authorization vulnerability in NotFound Pie Register Premium. This issue affects Pie Register Premium: from n/a through 3.8.3.2.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26947 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Services Section block allows Stored XSS. This issue affects Services Section block: from n/a through 1.3.4.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26945 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Info Cards – Gutenberg block for creating Beautiful Cards allows Stored XSS. This issue affects Info Cards – Gutenberg block for creating Beautiful Cards: from n/a through 1.0.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26939 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Counters Block allows Stored XSS. This issue affects Counters Block: from n/a through 1.1.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26938 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Countdown Timer allows Stored XSS. This issue affects Countdown Timer: from n/a through 1.2.6.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26937 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins Icon List Block allows Stored XSS. This issue affects Icon List Block: from n/a through 1.1.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|
|
CVE-2025-26928 |
Description: Missing Authorization vulnerability in xfinitysoft Order Limit for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Order Limit for WooCommerce: from n/a through 3.0.2.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
February 25th, 2025 (4 months ago)
|