CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-31572 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in v20202020 Multi Days Events and Multi Events in One Day Calendar allows Cross Site Request Forgery. This issue affects Multi Days Events and Multi Events in One Day Calendar: from n/a through 1.1.3.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31570 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in wp-buy Related Posts Widget with Thumbnails allows Stored XSS. This issue affects Related Posts Widget with Thumbnails: from n/a through 1.2.
CVSS: HIGH (7.1) EPSS Score: 0.02%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31569 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in wp-buy wordpress related Posts with thumbnails allows Stored XSS. This issue affects wordpress related Posts with thumbnails: from n/a through 3.0.0.1.
CVSS: HIGH (7.1) EPSS Score: 0.02%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31567 |
WordPress Themesflat Addons For Elementor plugin <= 2.2.5 - Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themesflat Themesflat Addons For Elementor allows Stored XSS. This issue affects Themesflat Addons For Elementor: from n/a through 2.2.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31566 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in riosisgroup Rio Video Gallery allows Stored XSS. This issue affects Rio Video Gallery: from n/a through 2.3.6.
CVSS: HIGH (7.1) EPSS Score: 0.02%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31562 |
WordPress Uptime Robot Plugin for WordPress plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aphotrax Uptime Robot Plugin for WordPress allows DOM-Based XSS. This issue affects Uptime Robot Plugin for WordPress: from n/a through 2.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31559 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Caspio Bridge Custom Database Applications by Caspio allows DOM-Based XSS. This issue affects Custom Database Applications by Caspio: from n/a through 2.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31557 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MiKa OSM – OpenStreetMap allows DOM-Based XSS. This issue affects OSM – OpenStreetMap: from n/a through 6.1.6.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31556 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in IDX Broker IMPress for IDX Broker allows Stored XSS. This issue affects IMPress for IDX Broker: from n/a through 3.2.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 31st, 2025 (3 months ago)
|
|
CVE-2025-31555 |
Description: Missing Authorization vulnerability in ContentMX ContentMX Content Publisher allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ContentMX Content Publisher: from n/a through 1.0.6.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
March 31st, 2025 (3 months ago)
|