CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-22303	WordPress WP Mailster plugin <= 1.8.17.0 - Sensitive Data Exposure vulnerability Description: Insertion of Sensitive Information Into Sent Data vulnerability in brandtoss WP Mailster allows Retrieve Embedded Sensitive Data.This issue affects WP Mailster: from n/a through 1.8.17.0. CVSS: MEDIUM (5.3) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22302	WordPress WP Wand plugin <= 1.2.5 - Broken Access Control vulnerability Description: Missing Authorization vulnerability in WP Wand WP Wand allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Wand: from n/a through 1.2.5. CVSS: MEDIUM (5.3) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22301	WordPress MyBookTable Bookstore by Stormhill Media plugin <= 3.5.3 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows Cross Site Request Forgery.This issue affects MyBookTable Bookstore: from n/a through 3.5.3. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22300	WordPress PixelYourSite plugin <= 10.0.1.2 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in PixelYourSite PixelYourSite – Your smart PIXEL (TAG) Manager allows Cross Site Request Forgery.This issue affects PixelYourSite – Your smart PIXEL (TAG) Manager: from n/a through 10.0.1.2. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22299	WordPress AI for SEO plugin <= 1.2.9 - Broken Access Control vulnerability Description: Missing Authorization vulnerability in spacecodes AI for SEO allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AI for SEO: from n/a through 1.2.9. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22298	WordPress Hive Support plugin <= 1.1.6 - Broken Access Control vulnerability Description: Missing Authorization vulnerability in Hive Support Hive Support – WordPress Help Desk allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hive Support – WordPress Help Desk: from n/a through 1.1.6. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22297	WordPress AI WP Writer plugin <= 3.8.4.4 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in AIpost AI WP Writer allows Cross Site Request Forgery.This issue affects AI WP Writer: from n/a through 3.8.4.4. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22296	WordPress Hash Elements plugin <= 1.4.9 - Cross Site Scripting (XSS) vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HashThemes Hash Elements.This issue affects Hash Elements: from n/a through 1.4.9. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22294	WordPress Custom Field For WP Job Manager plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gravity Master Custom Field For WP Job Manager allows Reflected XSS.This issue affects Custom Field For WP Job Manager: from n/a through 1.3. CVSS: HIGH (7.1) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)
CVE-2025-22293	WordPress Gutentor plugin <= 3.4.0 - Cross Site Scripting (XSS) vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Gutentor Gutentor allows DOM-Based XSS.This issue affects Gutentor: from n/a through 3.4.0. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE January 8th, 2025 (6 months ago)