Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-32630 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CMSJunkie - WordPress Business Directory Plugins WP-BusinessDirectory allows Reflected XSS. This issue affects WP-BusinessDirectory: from n/a through 3.1.2.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32628 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Wham Crowdfunding for WooCommerce allows Reflected XSS. This issue affects Crowdfunding for WooCommerce: from n/a through 3.1.12.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32626 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JoomSky JS Job Manager allows SQL Injection. This issue affects JS Job Manager: from n/a through 2.0.2.
CVSS: CRITICAL (9.3) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32625 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pootlepress Mobile Pages allows Reflected XSS. This issue affects Mobile Pages: from n/a through 1.0.2.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32622 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in OTP-less OTP-less one tap Sign in allows Reflected XSS. This issue affects OTP-less one tap Sign in: from n/a through 2.0.58.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32620 |
Description: Missing Authorization vulnerability in fromdoppler Doppler Forms allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Doppler Forms: from n/a through 2.4.5.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32615 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Clinked Clinked Client Portal allows Reflected XSS. This issue affects Clinked Client Portal: from n/a through 1.10.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32613 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bowo Debug Log Manager allows Stored XSS. This issue affects Debug Log Manager: from n/a through 2.3.4.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32611 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in We Are De WooCommerce TBC Credit Card Payment Gateway (Free) allows Reflected XSS. This issue affects WooCommerce TBC Credit Card Payment Gateway (Free): from n/a through 2.0.0.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-32609 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Picture-Planet GmbH Verowa Connect allows Reflected XSS. This issue affects Verowa Connect: from n/a through 3.0.4.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|