CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-23773 |
Description: Missing Authorization vulnerability in mingocommerce Delete All Posts allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Delete All Posts: from n/a through 1.1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.05%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-23448 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in dastan800 visualslider Sldier allows Reflected XSS. This issue affects visualslider Sldier: from n/a through 1.1.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-23443 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Claire Ryan Author Showcase allows Reflected XSS. This issue affects Author Showcase: from n/a through 1.4.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
April 17th, 2025 (2 months ago)
|
|
CVE-2025-22796 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in platcom WP-Asambleas allows Reflected XSS. This issue affects WP-Asambleas: from n/a through 2.85.0.
CVSS: HIGH (7.1) EPSS Score: 0.04% SSVC Exploitation: none
April 17th, 2025 (2 months ago)
|
|
CVE-2025-22774 |
WordPress CRUDLab Scroll to Top Plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CRUDLab CRUDLab Scroll to Top allows Reflected XSS. This issue affects CRUDLab Scroll to Top: from n/a through 1.0.1.
CVSS: HIGH (7.1) EPSS Score: 0.04% SSVC Exploitation: none
April 17th, 2025 (2 months ago)
|
|
CVE-2025-22771 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Studio Hyperset The Great Firewords of China allows Stored XSS. This issue affects The Great Firewords of China: from n/a through 1.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.03% SSVC Exploitation: none
April 17th, 2025 (2 months ago)
|
|
CVE-2025-22692 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in rachanaS Sponsered Link allows Reflected XSS. This issue affects Sponsered Link: from n/a through 4.0.
CVSS: HIGH (7.1) EPSS Score: 0.04% SSVC Exploitation: none
April 17th, 2025 (2 months ago)
|
|
CVE-2025-22655 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Caio Web Dev CWD – Stealth Links allows SQL Injection. This issue affects CWD – Stealth Links: from n/a through 1.3.
CVSS: CRITICAL (9.3) EPSS Score: 0.04% SSVC Exploitation: none
April 17th, 2025 (2 months ago)
|
|
CVE-2025-22651 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wppluginboxdev Stylish Google Sheet Reader allows Reflected XSS. This issue affects Stylish Google Sheet Reader: from n/a through 4.0.
CVSS: HIGH (7.1) EPSS Score: 0.04% SSVC Exploitation: none
April 17th, 2025 (2 months ago)
|
|
CVE-2025-22636 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vicente Ruiz Gálvez VR-Frases allows Reflected XSS. This issue affects VR-Frases: from n/a through 3.0.1.
CVSS: HIGH (8.2) EPSS Score: 0.04% SSVC Exploitation: none
April 17th, 2025 (2 months ago)
|