CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-27344 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in filipstepanov Phee's LinkPreview allows Cross Site Request Forgery. This issue affects Phee's LinkPreview: from n/a through 1.6.7.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27342 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in josesan WooCommerce Recargo de Equivalencia allows Cross Site Request Forgery. This issue affects WooCommerce Recargo de Equivalencia: from n/a through 1.6.24.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27341 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in afzal_du Reactive Mortgage Calculator allows Stored XSS. This issue affects Reactive Mortgage Calculator: from n/a through 1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27340 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Marc F12-Profiler allows Cross Site Request Forgery. This issue affects F12-Profiler: from n/a through 1.3.9.
CVSS: MEDIUM (5.4) EPSS Score: 0.02%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27339 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Will Anderson Minimum Password Strength allows Cross Site Request Forgery. This issue affects Minimum Password Strength: from n/a through 1.2.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27336 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Alex Prokopenko / JustCoded Just Variables allows Cross Site Request Forgery. This issue affects Just Variables: from n/a through 1.2.3.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27335 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Free plug in by SEO Roma Auto Tag Links allows Cross Site Request Forgery. This issue affects Auto Tag Links: from n/a through 1.0.13.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27331 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sébastien Dumont WooCommerce Display Products by Tags allows DOM-Based XSS. This issue affects WooCommerce Display Products by Tags: from n/a through 1.0.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27330 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PlayerJS PlayerJS allows DOM-Based XSS. This issue affects PlayerJS: from n/a through 2.23.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 24th, 2025 (4 months ago)
|
|
CVE-2025-27329 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in inlinkz EZ InLinkz linkup allows DOM-Based XSS. This issue affects EZ InLinkz linkup: from n/a through 0.18.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
February 24th, 2025 (4 months ago)
|