CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-24721	WordPress Easy YouTube Gallery plugin <= 1.0.4 - Stored Cross Site Scripting (XSS) vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Urošević Easy YouTube Gallery allows Stored XSS. This issue affects Easy YouTube Gallery: from n/a through 1.0.4. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24720	WordPress Sticky Buttons Plugin <= 4.1.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Sticky Buttons allows Cross Site Request Forgery. This issue affects Sticky Buttons: from n/a through 4.1.1. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24719	WordPress Widget Countdown plugin <= 2.7.1 - Cross Site Scripting (XSS) vulnerability Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevart Widget Countdown allows Stored XSS. This issue affects Widget Countdown: from n/a through 2.7.1. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24717	WordPress Modal Window Plugin <= 6.1.4 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Modal Window allows Cross Site Request Forgery. This issue affects Modal Window: from n/a through 6.1.4. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24716	WordPress Herd Effects Plugin <= 6.2.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Herd Effects allows Cross Site Request Forgery. This issue affects Herd Effects: from n/a through 6.2.1. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24715	WordPress Counter Box Plugin <= 2.0.5 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Counter Box allows Cross Site Request Forgery. This issue affects Counter Box: from n/a through 2.0.5. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24714	WordPress Bubble Menu Plugin <= 4.0.2 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu – circle floating menu allows Cross Site Request Forgery. This issue affects Bubble Menu – circle floating menu: from n/a through 4.0.2. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24713	WordPress Button Generator – easily Button Builder Plugin <= 3.1.1 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Button Generator – easily Button Builder allows Cross Site Request Forgery. This issue affects Button Generator – easily Button Builder: from n/a through 3.1.1. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24712	WordPress Radius Blocks – WordPress Gutenberg Blocks Plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in RadiusTheme Radius Blocks allows Cross Site Request Forgery. This issue affects Radius Blocks: from n/a through 2.1.2. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)
CVE-2025-24711	WordPress Popup Box Plugin <= 3.2.4 - Cross Site Request Forgery (CSRF) vulnerability Description: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Popup Box allows Cross Site Request Forgery. This issue affects Popup Box: from n/a through 3.2.4. CVSS: MEDIUM (5.4) EPSS Score: 0.04% Source: CVE January 25th, 2025 (5 months ago)