CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-32514 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cscode WooCommerce Estimate and Quote allows Reflected XSS. This issue affects WooCommerce Estimate and Quote: from n/a through 1.0.2.5.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32513 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in totalprocessing Nomupay Payment Processing Gateway allows Reflected XSS. This issue affects Nomupay Payment Processing Gateway: from n/a through 7.1.6.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32512 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in revampcrm Revamp CRM for WooCommerce allows Reflected XSS. This issue affects Revamp CRM for WooCommerce: from n/a through 1.1.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32511 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Excellent Dynamics Make Email Customizer for WooCommerce allows Reflected XSS. This issue affects Make Email Customizer for WooCommerce: from n/a through 1.0.5.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32508 |
WordPress Course Booking System plugin <= 6.0.7 - Reflected Cross Site Scripting (XSS) Vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ComMotion Course Booking System allows Reflected XSS. This issue affects Course Booking System: from n/a through 6.0.7.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32507 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aakif Kadiwala Event Espresso – Custom Email Template Shortcode allows Reflected XSS. This issue affects Event Espresso – Custom Email Template Shortcode: from n/a through 1.0.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32506 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BenDlz AT Internet SmartTag allows Reflected XSS. This issue affects AT Internet SmartTag: from n/a through 0.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32504 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in silvasoft Silvasoft boekhouden allows Reflected XSS. This issue affects Silvasoft boekhouden: from n/a through 3.0.5.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-32490 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebsiteDefender wp secure allows Stored XSS. This issue affects wp secure: from n/a through 1.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-31380 |
Description: Weak Password Recovery Mechanism for Forgotten Password vulnerability in videowhisper Paid Videochat Turnkey Site allows Password Recovery Exploitation. This issue affects Paid Videochat Turnkey Site: from n/a through 7.3.11.
CVSS: CRITICAL (9.8) EPSS Score: 0.05%
April 17th, 2025 (2 months ago)
|