CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-23842 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Nilesh Shiragave WordPress Gallery Plugin allows Cross Site Request Forgery.This issue affects WordPress Gallery Plugin: from n/a through 1.4.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23841 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nikos M. Top Flash Embed allows Stored XSS.This issue affects Top Flash Embed: from n/a through 0.3.4.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23833 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RaminMT Links/Problem Reporter allows DOM-Based XSS.This issue affects Links/Problem Reporter: from n/a through 2.6.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23832 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Matt Gibbs Admin Cleanup allows Stored XSS.This issue affects Admin Cleanup: from n/a through 1.0.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23831 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rene Hermenau QR Code Generator allows DOM-Based XSS.This issue affects QR Code Generator: from n/a through 1.2.6.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23830 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jobair JB Horizontal Scroller News Ticker allows DOM-Based XSS.This issue affects JB Horizontal Scroller News Ticker: from n/a through 1.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23828 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in OriginalTips.com WordPress Data Guard allows Stored XSS.This issue affects WordPress Data Guard: from n/a through 8.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23827 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Strx Strx Magic Floating Sidebar Maker allows Stored XSS.This issue affects Strx Magic Floating Sidebar Maker: from n/a through 1.4.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23826 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Predrag Supurović Stop Comment Spam allows Stored XSS.This issue affects Stop Comment Spam: from n/a through 0.5.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|
|
CVE-2025-23825 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alex Thorpe Easy Shortcode Buttons allows Stored XSS.This issue affects Easy Shortcode Buttons: from n/a through 1.2.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 17th, 2025 (5 months ago)
|