CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-47567 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup Video Player & FullScreen Video Background allows Blind SQL Injection. This issue affects Video Player & FullScreen Video Background: from n/a through 2.4.1.
CVSS: HIGH (7.6) EPSS Score: 0.04%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-47564 |
Description: Missing Authorization vulnerability in ashanjay EventON allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects EventON: from n/a through 4.9.9.
CVSS: MEDIUM (5.3) EPSS Score: 0.05%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-47563 |
Description: Missing Authorization vulnerability in villatheme CURCY allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects CURCY: from n/a through 2.3.7.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-47562 |
Description: Improper Control of Generation of Code ('Code Injection') vulnerability in RomanCode MapSVG allows Code Injection. This issue affects MapSVG: from n/a through 8.5.34.
CVSS: MEDIUM (5.3) EPSS Score: 0.05%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-47560 |
Description: Missing Authorization vulnerability in RomanCode MapSVG allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MapSVG: from n/a through 8.5.32.
CVSS: MEDIUM (5.0) EPSS Score: 0.03%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-47557 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RomanCode MapSVG allows Stored XSS. This issue affects MapSVG: from n/a through 8.5.31.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-47556 |
Description: Missing Authorization vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for WordPress allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects CSS3 Compare Pricing Tables for WordPress: from n/a through 11.5.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-47534 |
Description: Missing Authorization vulnerability in ValvePress Wordpress Auto Spinner allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Wordpress Auto Spinner: from n/a through 3.25.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-46464 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in scripteo Ads Pro Plugin allows Stored XSS. This issue affects Ads Pro Plugin: from n/a through 4.88.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
May 16th, 2025 (27 days ago)
|
|
CVE-2025-39537 |
Description: Authorization Bypass Through User-Controlled Key vulnerability in Chimpstudio WP JobHunt allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP JobHunt: from n/a through 7.1.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
May 16th, 2025 (27 days ago)
|