CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-23525 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in kvvaradha Kv Compose Email From Dashboard allows Reflected XSS. This issue affects Kv Compose Email From Dashboard: from n/a through 1.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-23523 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hoststreamsell HSS Embed Streaming Video allows Reflected XSS. This issue affects HSS Embed Streaming Video: from n/a through 3.23.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-23492 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CantonBolo WordPress 淘宝客插件 allows Reflected XSS. This issue affects WordPress 淘宝客插件: from n/a through 1.1.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-23474 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Mike Martel Live Dashboard allows Reflected XSS. This issue affects Live Dashboard: from n/a through 0.3.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-23431 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Envato Affiliater allows Reflected XSS. This issue affects Envato Affiliater: from n/a through 1.2.4.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-23428 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound QMean – WordPress Did You Mean allows Reflected XSS. This issue affects QMean – WordPress Did You Mean: from n/a through 2.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-23406 |
Description: Out-of-bounds read vulnerability caused by improper checking of TCP MSS option values exists in Cente middleware TCP/IP Network Series, which may lead to processing a specially crafted packet to cause the affected product crashed.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-22705 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in godthor Disqus Popular Posts allows Reflected XSS. This issue affects Disqus Popular Posts: from n/a through 2.1.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-22702 |
Description: Missing Authorization vulnerability in EPC Photography. This issue affects Photography: from n/a through 7.5.2.
CVSS: MEDIUM (6.3) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|
|
CVE-2025-22698 |
Description: Missing Authorization vulnerability in Ability, Inc Accessibility Suite by Online ADA allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Accessibility Suite by Online ADA: from n/a through 4.16.
CVSS: MEDIUM (6.3) EPSS Score: 0.04%
February 15th, 2025 (5 months ago)
|