CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-23851 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Coronavirus (COVID-19) Outbreak Data Widgets allows Reflected XSS. This issue affects Coronavirus (COVID-19) Outbreak Data Widgets: from n/a through 1.1.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23790 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wassereimer Easy Code Placement allows Reflected XSS. This issue affects Easy Code Placement: from n/a through 18.11.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23789 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tahminajannat URL Shortener | Conversion Tracking | AB Testing | WooCommerce allows Reflected XSS. This issue affects URL Shortener | Conversion Tracking | AB Testing | WooCommerce: from n/a through 9.0.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23788 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Easy Filter allows Reflected XSS. This issue affects Easy Filter: from n/a through 1.10.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23787 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Easy Bet allows Reflected XSS. This issue affects Easy Bet: from n/a through 1.0.7.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23786 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DuoGeek Email to Download allows Reflected XSS. This issue affects Email to Download: from n/a through 3.1.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23771 |
Description: Missing Authorization vulnerability in Murali Push Notification for Post and BuddyPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Push Notification for Post and BuddyPress: from n/a through 2.11.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23766 |
Description: Missing Authorization vulnerability in ashamil OPSI Israel Domestic Shipments allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects OPSI Israel Domestic Shipments: from n/a through 2.6.6.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23751 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 Data Dash allows Reflected XSS. This issue affects Data Dash: from n/a through 1.2.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|
|
CVE-2025-23750 |
WordPress Custom Widget Creator plugin <= 1.0.5 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in devbunchuk Custom Widget Creator allows Reflected XSS. This issue affects Custom Widget Creator: from n/a through 1.0.5.
CVSS: HIGH (7.1) EPSS Score: 0.04%
February 15th, 2025 (4 months ago)
|