CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-47449 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jordy Meow Meow Gallery allows Stored XSS. This issue affects Meow Gallery: from n/a through 5.2.7.
CVSS: MEDIUM (5.9) EPSS Score: 0.03%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-47448 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking allows Cross Site Request Forgery. This issue affects WP Hotel Booking: from n/a through 2.1.9.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-47447 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak Cool Author Box allows Cross Site Request Forgery. This issue affects Cool Author Box: from n/a through 3.0.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-47446 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in listamester Listamester allows Cross Site Request Forgery. This issue affects Listamester: from n/a through 2.3.6.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-47443 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevart Widget Countdown allows Stored XSS. This issue affects Widget Countdown: from n/a through 2.7.4.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-47442 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CC CC BMI Calculator allows Stored XSS. This issue affects CC BMI Calculator: from n/a through 2.1.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-47441 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chris Reynolds Progress Bar allows Stored XSS. This issue affects Progress Bar: from n/a through 2.2.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-3218 |
Description: IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 is vulnerable to authentication and authorization attacks due to incorrect validation processing in IBM i Netserver. A malicious actor could use the weaknesses, in conjunction with brute force authentication attacks or to bypass authority restrictions, to access the server.
CVSS: MEDIUM (5.4) EPSS Score: 0.03% SSVC Exploitation: none
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-29602 |
Description: flatpress 1.3.1 is vulnerable to Cross Site Scripting (XSS) in Administration area via Manage categories.
CVSS: MEDIUM (6.1) EPSS Score: 0.03%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-39361 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WProyal Royal Elementor Addons allows Stored XSS.This issue affects Royal Elementor Addons: from n/a through 1.7.1017.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
May 7th, 2025 (about 2 months ago)
|