Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-23988
WordPress ghostwriter theme <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bruno Cavalcante Ghostwriter allows Reflected XSS.This issue affects Ghostwriter: from n/a through 1.4.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-23986
WordPress Tiki Time theme <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in fyrewurks Tiki Time allows Reflected XSS.This issue affects Tiki Time: from n/a through 1.3.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-23983
WordPress Tijaji theme <= 1.43 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tijaji allows Reflected XSS.This issue affects Tijaji: from n/a through 1.43.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-23981
WordPress CarZine theme <= 1.4.6 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Takimi Themes CarZine allows Reflected XSS.This issue affects CarZine: from n/a through 1.4.6.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-23979
WordPress Flashy theme <= 1.2.1 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in duwasai Flashy allows Reflected XSS.This issue affects Flashy: from n/a through 1.2.1.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-22792
WordPress Js O3 Lite theme <= 1.5.8.2 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jinwen Js O3 Lite allows Reflected XSS.This issue affects Js O3 Lite: from n/a through 1.5.8.2.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-22791
WordPress offset writing theme <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in twh offset writing allows Reflected XSS.This issue affects offset writing: from n/a through 1.2.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

SSVC Exploitation: none

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-22790
WordPress moseter theme <= 1.3.1 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in asmedia allows Reflected XSS.This issue affects moseter: from n/a through 1.3.1.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-22789
WordPress polka dots theme <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in fyrewurks polka dots allows Reflected XSS.This issue affects polka dots: from n/a through 1.2.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)

CVE-2025-22687
WordPress tuaug4 theme <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Asmedia Tuaug4 allows Reflected XSS.This issue affects Tuaug4: from n/a through 1.4.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
May 19th, 2025 (21 days ago)