Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-32262 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Robert D Payne RDP Wiki Embed allows Cross Site Request Forgery. This issue affects RDP Wiki Embed: from n/a through 1.2.20.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32261 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Kuppuraj Advanced All in One Admin Search by WP Spotlight allows Cross Site Request Forgery. This issue affects Advanced All in One Admin Search by WP Spotlight: from n/a through 1.1.1.
CVSS: MEDIUM (4.3) EPSS Score: 0.02%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32258 |
Description: Missing Authorization vulnerability in InfoGiants Simple Website Logo allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Simple Website Logo: from n/a through 1.1.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32257 |
Description: Exposure of Sensitive System Information Due to Uncleared Debug Information vulnerability in 1clickmigration 1 Click WordPress Migration allows Retrieve Embedded Sensitive Data. This issue affects 1 Click WordPress Migration: from n/a through 2.2.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32256 |
Description: Missing Authorization vulnerability in devsoftbaltic SurveyJS allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects SurveyJS: from n/a through 1.12.20.
CVSS: MEDIUM (5.3) EPSS Score: 0.05%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32255 |
Description: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ERA404 StaffList allows Retrieve Embedded Sensitive Data. This issue affects StaffList: from n/a through 3.2.6.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32254 |
Description: Missing Authorization vulnerability in Iqonic Design WPBookit allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects WPBookit: from n/a through 1.0.1.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32253 |
Description: Missing Authorization vulnerability in ComMotion Course Booking System allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Course Booking System: from n/a through 6.0.5.
CVSS: MEDIUM (5.3) EPSS Score: 0.05%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32252 |
Description: Missing Authorization vulnerability in blackandwhitedigital WP Genealogy – Your Family History Website allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Genealogy – Your Family History Website: from n/a through 0.1.9.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32251 |
Description: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in J. Tyler Wiest Jetpack Feedback Exporter allows Retrieve Embedded Sensitive Data. This issue affects Jetpack Feedback Exporter: from n/a through 1.23.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|