Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-32226 |
Description: Missing Authorization vulnerability in Anzar Ahmed Display product variations dropdown on shop page allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Display product variations dropdown on shop page: from n/a through 1.1.3.
CVSS: MEDIUM (4.3) EPSS Score: 0.03%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32225 |
Description: Missing Authorization vulnerability in WP Event Manager WP Event Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Event Manager: from n/a through 3.1.47.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32224 |
Description: Missing Authorization vulnerability in shivammani Privyr CRM allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Privyr CRM: from n/a through 1.0.1.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32220 |
Description: Missing Authorization vulnerability in Dimitri Grassi Salon booking system allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Salon booking system: from n/a through 10.10.7.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32219 |
Description: Missing Authorization vulnerability in Syntactics, Inc. eaSYNC allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects eaSYNC: from n/a through 1.3.19.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32218 |
Description: Missing Authorization vulnerability in RealMag777 TableOn – WordPress Posts Table Filterable allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects TableOn – WordPress Posts Table Filterable: from n/a through 1.0.4.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32217 |
Description: Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Ai Image Alt Text Generator for WP: from n/a through 1.0.8.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32207 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Anzar Ahmed Ni WooCommerce Cost Of Goods allows Stored XSS. This issue affects Ni WooCommerce Cost Of Goods: from n/a through 3.2.8.
CVSS: MEDIUM (6.5) EPSS Score: 0.03%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32204 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in rocketelements Split Test For Elementor allows SQL Injection. This issue affects Split Test For Elementor: from n/a through 1.8.2.
CVSS: HIGH (7.6) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|
|
CVE-2025-32203 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in manu225 Falling things allows SQL Injection. This issue affects Falling things: from n/a through 1.08.
CVSS: HIGH (7.6) EPSS Score: 0.04%
April 4th, 2025 (18 days ago)
|