CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-46238	WordPress List Last Changes <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in rbaer List Last Changes allows Stored XSS. This issue affects List Last Changes: from n/a through 1.2.1. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46237	WordPress Link Library <= 7.8 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library allows Stored XSS. This issue affects Link Library: from n/a through 7.8. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46236	WordPress HTML Forms <= 1.5.2 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms allows Stored XSS. This issue affects HTML Forms: from n/a through 1.5.2. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46235	WordPress SKT Blocks – Gutenberg based Page Builder <= 2.0 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sonalsinha21 SKT Blocks – Gutenberg based Page Builder allows Stored XSS. This issue affects SKT Blocks – Gutenberg based Page Builder: from n/a through 2.0. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46233	WordPress Sirv <= 7.5.3 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sirv CDN and Image Hosting Sirv allows Stored XSS. This issue affects Sirv: from n/a through 7.5.3. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46232	WordPress Download Alt Text AI <= 1.9.93 - Broken Access Control Vulnerability Description: Missing Authorization vulnerability in alttextai Download Alt Text AI allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Download Alt Text AI: from n/a through 1.9.93. CVSS: MEDIUM (4.3) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46231	WordPress affiliate-toolkit <= 3.7.3 - Cross Site Request Forgery (CSRF) Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in SERVIT Software Solutions affiliate-toolkit allows Cross Site Request Forgery. This issue affects affiliate-toolkit: from n/a through 3.7.3. CVSS: MEDIUM (5.4) EPSS Score: 0.02% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46229	WordPress Textmetrics <= 3.6.2 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Israpil Textmetrics allows Stored XSS. This issue affects Textmetrics: from n/a through 3.6.2. CVSS: MEDIUM (5.9) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46228	WordPress Event post <= 5.9.11 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bastien Ho Event post allows DOM-Based XSS. This issue affects Event post: from n/a through 5.9.11. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46227	WordPress Custom Related Posts <= 1.7.4 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brecht Custom Related Posts allows Stored XSS. This issue affects Custom Related Posts: from n/a through 1.7.4. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)