Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-31433 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Miguel Sirvent Magic Embeds allows Stored XSS. This issue affects Magic Embeds: from n/a through 3.1.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31096 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPXPO PostX allows DOM-Based XSS. This issue affects PostX: from n/a through 4.1.25.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31094 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in teastudio.pl WP Posts Carousel allows Stored XSS. This issue affects WP Posts Carousel: from n/a through 1.3.8.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31093 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in redpixelstudios RPS Include Content allows DOM-Based XSS. This issue affects RPS Include Content: from n/a through 1.2.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31090 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alordiel Dropdown Multisite selector allows Stored XSS. This issue affects Dropdown Multisite selector: from n/a through n/a.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31088 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cozmoslabs Paid Member Subscriptions allows Stored XSS. This issue affects Paid Member Subscriptions: from n/a through 2.14.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31083 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ZEEN101 Leaky Paywall allows Stored XSS. This issue affects Leaky Paywall: from n/a through 4.21.7.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31079 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in usermaven Usermaven allows Cross Site Request Forgery. This issue affects Usermaven: from n/a through 1.2.1.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31077 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ultimate Blocks Ultimate Blocks allows DOM-Based XSS. This issue affects Ultimate Blocks: from n/a through 3.2.7.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|
|
CVE-2025-31076 |
Description: Server-Side Request Forgery (SSRF) vulnerability in WP Compress WP Compress for MainWP allows Server Side Request Forgery. This issue affects WP Compress for MainWP: from n/a through 6.30.03.
CVSS: MEDIUM (4.9) EPSS Score: 0.03%
March 28th, 2025 (25 days ago)
|