Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-22669 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in AwesomeTOGI Awesome Event Booking allows Cross Site Request Forgery.This issue affects Awesome Event Booking: from n/a through 2.7.5.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-22668 |
Description: Missing Authorization vulnerability in AwesomeTOGI Awesome Event Booking allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Awesome Event Booking: from n/a through 2.7.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.05%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-22667 |
Description: Missing Authorization vulnerability in Creative Werk Designs Export Order, Product, Customer & Coupon for WooCommerce to Google Sheets.This issue affects Export Order, Product, Customer & Coupon for WooCommerce to Google Sheets: from n/a through 1.8.2.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-22665 |
Description: Missing Authorization vulnerability in Shakeeb Sadikeen RapidLoad allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RapidLoad: from n/a through 2.4.4.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-22660 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wolfgang Include Mastodon Feed allows DOM-Based XSS.This issue affects Include Mastodon Feed: from n/a through 1.9.9.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-26738 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Graham Quick Interest Slider allows DOM-Based XSS.This issue affects Quick Interest Slider: from n/a through 3.1.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-26737 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in yudleethemes City Store allows DOM-Based XSS.This issue affects City Store: from n/a through 1.4.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30925 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webangon The Pack Elementor addons allows Stored XSS. This issue affects The Pack Elementor addons: from n/a through 2.1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30923 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in powerfulwp Gift Message for WooCommerce allows Cross Site Request Forgery. This issue affects Gift Message for WooCommerce: from n/a through 1.7.8.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 27th, 2025 (26 days ago)
|
|
CVE-2025-30922 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in simplebooklet Simplebooklet PDF Viewer and Embedder allows Stored XSS. This issue affects Simplebooklet PDF Viewer and Embedder: from n/a through 1.1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 27th, 2025 (26 days ago)
|