CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-23843 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wphrmanager WP-HR Manager: The Human Resources Plugin for WordPress allows Reflected XSS. This issue affects WP-HR Manager: The Human Resources Plugin for WordPress: from n/a through 3.1.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23829 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Woo Update Variations In Cart allows Stored XSS. This issue affects Woo Update Variations In Cart: from n/a through 0.0.9.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23814 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound CRUDLab Like Box allows Reflected XSS. This issue affects CRUDLab Like Box: from n/a through 2.0.9.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23813 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Guten Free Options allows Reflected XSS. This issue affects Guten Free Options: from n/a through 0.9.5.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23763 |
Description: Missing Authorization vulnerability in Alex Volkov WAH Forms allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WAH Forms: from n/a through 1.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23762 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound DsgnWrks Twitter Importer allows Reflected XSS. This issue affects DsgnWrks Twitter Importer: from n/a through 1.1.4.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23753 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound DN Sitemap Control allows Reflected XSS. This issue affects DN Sitemap Control: from n/a through 1.0.6.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23741 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Notifications Center allows Reflected XSS. This issue affects Notifications Center: from n/a through 1.5.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23740 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Easy School Registration allows Reflected XSS. This issue affects Easy School Registration: from n/a through 3.9.8.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|
|
CVE-2025-23739 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Ultimate Reviews FREE allows Reflected XSS. This issue affects WP Ultimate Reviews FREE: from n/a through 1.0.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
March 3rd, 2025 (4 months ago)
|