CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-47504	WordPress Custom Checkout Fields for WooCommerce <= 1.8.3 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Custom Checkout Fields for WooCommerce allows Stored XSS. This issue affects Custom Checkout Fields for WooCommerce: from n/a through 1.8.3. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47503	WordPress NGG Smart Image Search <= 3.3.3 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpo-HR NGG Smart Image Search allows Stored XSS. This issue affects NGG Smart Image Search: from n/a through 3.3.3. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47502	WordPress Mollie Forms <= 2.7.12 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nick Mollie Forms allows Stored XSS. This issue affects Mollie Forms: from n/a through 2.7.12. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47501	WordPress Content Control <= 2.6.1 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Code Atlantic Content Control allows DOM-Based XSS. This issue affects Content Control: from n/a through 2.6.1. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47499	WordPress Simple Blog Stats <= 20250416 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jeff Starr Simple Blog Stats allows Stored XSS. This issue affects Simple Blog Stats: from n/a through 20250416. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47497	WordPress Logo Showcase <= 3.0.4 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themepoints Logo Showcase allows DOM-Based XSS. This issue affects Logo Showcase: from n/a through 3.0.4. CVSS: MEDIUM (6.5) EPSS Score: 0.05% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47495	WordPress Blockspare <= 3.2.9 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Blockspare Blockspare allows Stored XSS. This issue affects Blockspare: from n/a through 3.2.9. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47493	WordPress Ultimate Blocks <= 3.2.9 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ultimate Blocks Ultimate Blocks allows DOM-Based XSS. This issue affects Ultimate Blocks: from n/a through 3.2.9. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47489	WordPress Beds24 Online Booking <= 2.0.29 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in markkinchin Beds24 Online Booking allows Stored XSS. This issue affects Beds24 Online Booking: from n/a through 2.0.29. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)
CVE-2025-47488	WordPress Bold Page Builder <= 5.3.2 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in boldthemes Bold Page Builder allows DOM-Based XSS. This issue affects Bold Page Builder: from n/a through 5.3.2. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE May 7th, 2025 (about 2 months ago)