CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-30866 |
Description: Missing Authorization vulnerability in Giannis Kipouros Terms & Conditions Per Product allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Terms & Conditions Per Product: from n/a through 1.2.15.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30865 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in fuzzoid 3DPrint Lite allows Cross Site Request Forgery. This issue affects 3DPrint Lite: from n/a through 2.1.3.5.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30864 |
Description: Missing Authorization vulnerability in falselight Exchange Rates allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Exchange Rates: from n/a through 1.2.2.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30863 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in CRM Perks Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms allows Cross Site Request Forgery. This issue affects Integration for Google Sheets and Contact Form 7, WPForms, Elementor, Ninja Forms: from n/a through 1.0.9.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30862 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi reCAPTCHA for all allows Cross Site Request Forgery. This issue affects reCAPTCHA for all: from n/a through 2.22.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30861 |
Description: Missing Authorization vulnerability in Rustaurius Five Star Restaurant Reservations allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Five Star Restaurant Reservations: from n/a through 2.6.29.
CVSS: MEDIUM (4.9) EPSS Score: 0.04%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30860 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jory Hogeveen Off-Canvas Sidebars & Menus (Slidebars) allows DOM-Based XSS. This issue affects Off-Canvas Sidebars & Menus (Slidebars): from n/a through 0.5.8.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30859 |
Description: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in ali2woo AliNext allows Phishing. This issue affects AliNext: from n/a through 3.5.1.
CVSS: MEDIUM (4.7) EPSS Score: 0.03%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30857 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in PressMaximum Currency Switcher for WooCommerce allows Stored XSS. This issue affects Currency Switcher for WooCommerce: from n/a through 0.0.7.
CVSS: HIGH (7.1) EPSS Score: 0.02%
March 27th, 2025 (3 months ago)
|
|
CVE-2025-30856 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in theme funda Custom Field For WP Job Manager allows Cross Site Request Forgery. This issue affects Custom Field For WP Job Manager: from n/a through 1.4.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
March 27th, 2025 (3 months ago)
|