CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-46243	WordPress Recover abandoned cart for WooCommerce <= 2.2 - Cross Site Request Forgery (CSRF) Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in sonalsinha21 Recover abandoned cart for WooCommerce allows Cross Site Request Forgery. This issue affects Recover abandoned cart for WooCommerce: from n/a through 2.2. CVSS: MEDIUM (4.3) EPSS Score: 0.02% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46242	WordPress Watu Quiz <= 3.4.3 - SQL Injection Vulnerability Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bob Watu Quiz allows SQL Injection. This issue affects Watu Quiz: from n/a through 3.4.3. CVSS: HIGH (7.6) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46241	WordPress Appointment Booking Calendar plugin <= 1.3.92 - CSRF to SQL Injection vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in codepeople Appointment Booking Calendar allows SQL Injection. This issue affects Appointment Booking Calendar: from n/a through 1.3.92. CVSS: HIGH (8.2) EPSS Score: 0.02% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46240	WordPress Simple Download Counter <= 2.2 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jeff Starr Simple Download Counter allows Stored XSS. This issue affects Simple Download Counter: from n/a through 2.2. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46239	WordPress Theme Switcha <= 3.4 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jeff Starr Theme Switcha allows Stored XSS. This issue affects Theme Switcha: from n/a through 3.4. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46238	WordPress List Last Changes <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in rbaer List Last Changes allows Stored XSS. This issue affects List Last Changes: from n/a through 1.2.1. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46237	WordPress Link Library <= 7.8 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library allows Stored XSS. This issue affects Link Library: from n/a through 7.8. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46236	WordPress HTML Forms <= 1.5.2 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms allows Stored XSS. This issue affects HTML Forms: from n/a through 1.5.2. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46235	WordPress SKT Blocks – Gutenberg based Page Builder <= 2.0 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sonalsinha21 SKT Blocks – Gutenberg based Page Builder allows Stored XSS. This issue affects SKT Blocks – Gutenberg based Page Builder: from n/a through 2.0. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)
CVE-2025-46233	WordPress Sirv <= 7.5.3 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sirv CDN and Image Hosting Sirv allows Stored XSS. This issue affects Sirv: from n/a through 7.5.3. CVSS: MEDIUM (6.5) EPSS Score: 0.03% Source: CVE April 22nd, 2025 (about 2 months ago)