CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-23870 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Robert Nicholson Copyright Safeguard Footer Notice allows Stored XSS.This issue affects Copyright Safeguard Footer Notice: from n/a through 3.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23869 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Shibu Lijack a.k.a CyberJack CJ Custom Content allows Stored XSS.This issue affects CJ Custom Content: from n/a through 2.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23868 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Markus Liebelt Chess Tempo Viewer allows Stored XSS.This issue affects Chess Tempo Viewer: from n/a through 0.9.5.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23865 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pressfore Winning Portfolio allows Stored XSS.This issue affects Winning Portfolio: from n/a through 1.1.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23864 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Code Snippets (Luke America) WCS QR Code Generator allows Stored XSS.This issue affects WCS QR Code Generator: from n/a through 1.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23863 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eiji ‘Sabaoh’ Yamada Rollover Tab allows Stored XSS.This issue affects Rollover Tab: from n/a through 1.3.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23862 |
Description: Missing Authorization vulnerability in SzMake Contact Form 7 Anti Spambot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form 7 Anti Spambot: from n/a through 1.0.1.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23861 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Katz Web Services, Inc. Debt Calculator allows Cross Site Request Forgery.This issue affects Debt Calculator: from n/a through 1.0.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23860 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eyouth { rob.panes } Charity-thermometer allows Stored XSS.This issue affects Charity-thermometer: from n/a through 1.1.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|
|
CVE-2025-23859 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joshua Wieczorek Daily Proverb allows Stored XSS.This issue affects Daily Proverb: from n/a through 2.0.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (6 months ago)
|