Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-30942	WordPress Post Custom Templates Lite <= 1.14 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in OTWthemes Post Custom Templates Lite allows Stored XSS. This issue affects Post Custom Templates Lite: from n/a through 1.14. CVSS: MEDIUM (5.9) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30941	WordPress Pinterest Verify Meta Tag <= 1.3 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Marvie Pons Pinterest Verify Meta Tag allows Stored XSS. This issue affects Pinterest Verify Meta Tag: from n/a through 1.3. CVSS: MEDIUM (5.9) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30940	WordPress Melipayamak <= 2.2.12 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in melipayamak Melipayamak allows Stored XSS. This issue affects Melipayamak: from n/a through 2.2.12. CVSS: MEDIUM (5.9) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30939	WordPress IFrame Widget <= 4.1 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Debashish IFrame Widget allows Stored XSS. This issue affects IFrame Widget: from n/a through 4.1. CVSS: MEDIUM (5.9) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30938	WordPress Broadly for WordPress <= 3.0.2 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in broadly Broadly for WordPress allows Stored XSS. This issue affects Broadly for WordPress: from n/a through 3.0.2. CVSS: MEDIUM (5.9) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30937	WordPress Responsify WP <= 1.9.11 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in stefanledin Responsify WP allows Stored XSS. This issue affects Responsify WP: from n/a through 1.9.11. CVSS: MEDIUM (5.9) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30935	WordPress Contact Form <= 2.0.12 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NickDuncan Contact Form allows DOM-Based XSS. This issue affects Contact Form: from n/a through 2.0.12. CVSS: MEDIUM (6.5) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30934	WordPress 診断ジェネレータ作成プラグイン <= 1.4.16 - Broken Access Control Vulnerability Description: Missing Authorization vulnerability in OLIVESYSTEM 診断ジェネレータ作成プラグイン allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects 診断ジェネレータ作成プラグイン: from n/a through 1.4.16. CVSS: MEDIUM (5.3) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30932	WordPress WP Compress for MainWP <= 6.30.32 - Broken Access Control Vulnerability Description: Missing Authorization vulnerability in WP Compress WP Compress for MainWP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Compress for MainWP: from n/a through 6.30.32. CVSS: MEDIUM (5.4) Source: CVE June 6th, 2025 (about 21 hours ago)
CVE-2025-30931	WordPress «Подсказки» от DaData.ru <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shamil Shafeev «Подсказки» от DaData.ru allows Stored XSS. This issue affects «Подсказки» от DaData.ru: from n/a through 1.0.6. CVSS: MEDIUM (5.9) Source: CVE June 6th, 2025 (about 21 hours ago)