CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-46466	WordPress Modern Polls plugin <= 1.0.10 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in felixtz Modern Polls allows Stored XSS. This issue affects Modern Polls: from n/a through 1.0.10. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46465	WordPress Print Science Designer plugin <= 1.3.155 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in John Weissberg Print Science Designer allows Stored XSS. This issue affects Print Science Designer: from n/a through 1.3.155. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46462	WordPress WPVN <= 0.7.8 - Cross Site Request Forgery (CSRF) Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Trân Minh-Quân WPVN allows Cross Site Request Forgery. This issue affects WPVN: from n/a through 0.7.8. CVSS: MEDIUM (4.3) EPSS Score: 0.02% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46461	WordPress RRSSB <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Relentless Apps RRSSB allows DOM-Based XSS. This issue affects RRSSB: from n/a through 1.0.1. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46459	WordPress Confirm User Registration <= 2.1.5 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ralf Hortt Confirm User Registration allows Stored XSS. This issue affects Confirm User Registration: from n/a through 2.1.5. CVSS: MEDIUM (5.9) EPSS Score: 0.03% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46457	WordPress Wp Custom CMS Block plugin <= 2.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in digontoahsan Wp Custom CMS Block allows Stored XSS. This issue affects Wp Custom CMS Block: from n/a through 2.1. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46453	WordPress Zoho Creator Forms <= 1.0.5 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CreatorTeam Zoho Creator Forms allows Stored XSS. This issue affects Zoho Creator Forms: from n/a through 1.0.5. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46452	WordPress Google News plugin <= 2.5.1 - CSRF to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Olav Kolbu Google News allows Stored XSS. This issue affects Google News: from n/a through 2.5.1. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46451	WordPress Floating Social Bar <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Syed Balkhi Floating Social Bar allows Stored XSS. This issue affects Floating Social Bar: from n/a through 1.1.7. CVSS: MEDIUM (5.9) EPSS Score: 0.03% Source: CVE April 24th, 2025 (about 2 months ago)
CVE-2025-46450	WordPress occupancyplan plugin <= 1.0.3.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in x000x occupancyplan allows Stored XSS. This issue affects occupancyplan: from n/a through 1.0.3.0. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE April 24th, 2025 (about 2 months ago)