CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-38691	WordPress Metorik plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Metorik Metorik – Reports & Email Automation for WooCommerce allows Cross Site Request Forgery.This issue affects Metorik – Reports & Email Automation for WooCommerce: from n/a through 1.7.1. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37937	WordPress Rara Business theme <= 1.2.5 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Rara Business allows Cross Site Request Forgery.This issue affects Rara Business: from n/a through 1.2.5. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37931	WordPress Point theme <= 1.1 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Creativthemes Point allows Cross Site Request Forgery.This issue affects Point: from n/a through 1.1. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37925	WordPress BuddyBoss Theme theme <= 2.4.61 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in BUDDYBOSS LLC BuddyBoss Theme allows Cross Site Request Forgery.This issue affects BuddyBoss Theme: from n/a through 2.4.61. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37543	WordPress Ultimate Auction plugin <= 4.2.5 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Nitesh Singh Ultimate Auction allows Cross Site Request Forgery.This issue affects Ultimate Auction : from n/a through 4.2.5. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37540	WordPress Leaky Paywall plugin <= 4.21.2 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Leaky Paywall Leaky Paywall allows Cross Site Request Forgery.This issue affects Leaky Paywall: from n/a through 4.21.2. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37518	WordPress The Events Calendar plugin <= 6.5.1.4 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in The Events Calendar The Events Calendar allows Cross Site Request Forgery.This issue affects The Events Calendar: from n/a through 6.5.1.4. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37511	WordPress Swift Performance Lite plugin <= 2.3.6.20 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in SWTE Swift Performance Lite allows Cross Site Request Forgery.This issue affects Swift Performance Lite: from n/a through 2.3.6.20. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37508	WordPress Construction Landing Page theme <= 1.3.5 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Construction Landing Page allows Cross Site Request Forgery.This issue affects Construction Landing Page: from n/a through 1.3.5. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)
CVE-2024-37503	WordPress Lawyer Landing Page theme <= 1.2.4 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme Lawyer Landing Page allows Cross Site Request Forgery.This issue affects Lawyer Landing Page: from n/a through 1.2.4. CVSS: MEDIUM (4.3) EPSS Score: 0.04% Source: CVE January 3rd, 2025 (7 months ago)