CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-30592	WordPress Advanced Dewplayer - <= <= 1.6 Broken Access Control Vulnerability Description: Missing Authorization vulnerability in westerndeal Advanced Dewplayer allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Advanced Dewplayer: from n/a through 1.6. CVSS: MEDIUM (5.3) EPSS Score: 0.04% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30591	WordPress Music Press Pro - <= <= 1.4.6 Broken Access Control Vulnerability Description: Missing Authorization vulnerability in tuyennv Music Press Pro allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Music Press Pro: from n/a through 1.4.6. CVSS: MEDIUM (5.3) EPSS Score: 0.04% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30590	WordPress Flickr set slideshows - <= <= 0.9 SQL Injection Vulnerability Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Dourou Flickr set slideshows allows SQL Injection. This issue affects Flickr set slideshows: from n/a through 0.9. CVSS: HIGH (8.5) EPSS Score: 0.03% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30588	WordPress Map Contact plugin <= 3.0.4 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in ryan_xantoo Map Contact allows Stored XSS. This issue affects Map Contact: from n/a through 3.0.4. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30587	WordPress LH OGP Meta plugin <= 1.73 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in shawfactor LH OGP Meta allows Stored XSS. This issue affects LH OGP Meta: from n/a through 1.73. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30586	WordPress cTabs plugin <= 1.3 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in bbodine1 cTabs allows Stored XSS. This issue affects cTabs: from n/a through 1.3. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30585	WordPress Generate Post Thumbnails - <= <= 0.8 Cross Site Request Forgery (CSRF) Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in marynixie Generate Post Thumbnails allows Cross Site Request Forgery. This issue affects Generate Post Thumbnails: from n/a through 0.8. CVSS: MEDIUM (4.3) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30584	WordPress AlphaOmega Captcha & Anti-Spam Filter plugin <= 3.3 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in alphaomegaplugins AlphaOmega Captcha & Anti-Spam Filter allows Stored XSS. This issue affects AlphaOmega Captcha & Anti-Spam Filter: from n/a through 3.3. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30583	WordPress Pro Rank Tracker plugin <= 1.0.0 - CSRF to Stored XSS Vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in ProRankTracker Pro Rank Tracker allows Stored XSS. This issue affects Pro Rank Tracker: from n/a through 1.0.0. CVSS: HIGH (7.1) EPSS Score: 0.02% Source: CVE March 24th, 2025 (3 months ago)
CVE-2025-30581	WordPress Top Bar - <= <=3.3 Broken Access Control Vulnerability Description: Missing Authorization vulnerability in PluginOps Top Bar allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Top Bar: from n/a through 3.3. CVSS: MEDIUM (5.3) EPSS Score: 0.04% Source: CVE March 24th, 2025 (3 months ago)