Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-27343 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Webilop WooCommerce HTML5 Video allows Reflected XSS. This issue affects WooCommerce HTML5 Video: from n/a through 1.7.10.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27338 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in graphems List Urls allows Reflected XSS. This issue affects List Urls: from n/a through 0.2.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27337 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in kontur Fontsampler allows Reflected XSS. This issue affects Fontsampler: from n/a through 0.4.14.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27333 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in alvego Protected wp-login allows Reflected XSS. This issue affects Protected wp-login: from n/a through 2.1.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27324 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 17track 17TRACK for WooCommerce allows Reflected XSS. This issue affects 17TRACK for WooCommerce: from n/a through 1.2.10.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27322 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bappa Mal QR Code for WooCommerce allows Reflected XSS. This issue affects QR Code for WooCommerce: from n/a through 1.2.0.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27319 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ivan82 User List allows Reflected XSS. This issue affects User List: from n/a through 1.5.1.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27314 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kush Sharma Kush Micro News allows Stored XSS. This issue affects Kush Micro News: from n/a through 1.6.7.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27313 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bernd Altmeier Google Maps GPX Viewer allows Reflected XSS. This issue affects Google Maps GPX Viewer: from n/a through 3.6.
CVSS: HIGH (7.1) EPSS Score: 0.03%
April 17th, 2025 (2 days ago)
|
|
CVE-2025-27310 |
Description: Missing Authorization vulnerability in Radius of Thought Page and Post Lister allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Page and Post Lister: from n/a through 1.2.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
April 17th, 2025 (2 days ago)
|