CVE Alert: CVE-2025-24970
Vulnerability Summary: CVE-2025-24970 Netty, an asynchronous, event-driven network application framework, has a vulnerability starting in version 4.1.91.Final and prior to...
Vulnerabilities
CVE Alert: CVE-2025-25193
Vulnerability Summary: CVE-2025-25193 Netty, an asynchronous, event-driven network application framework, has a vulnerability in versions up to and including 4.1.118.Final....
CVE Alert: CVE-2025-25194
Vulnerability Summary: CVE-2025-25194 Lemmy, a link aggregator and forum for the fediverse, is vulnerable to server-side request forgery via a...
CVE Alert: CVE-2025-1160
Vulnerability Summary: CVE-2025-1160 A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected...
CVE Alert: CVE-2024-13440
Vulnerability Summary: CVE-2024-13440 The Super Store Finder plugin for WordPress is vulnerable to SQL Injection via the ‘ssf_wp_user_name’ parameter in...
CVE Alert: CVE-2025-25149
Vulnerability Summary: CVE-2025-25149 Cross-Site Request Forgery (CSRF) vulnerability in Danillo Nunes Login-box allows Stored XSS. This issue affects Login-box: from...
CVE Alert: CVE-2025-25151
Vulnerability Summary: CVE-2025-25151 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes uListing allows...
CVE Alert: CVE-2025-25153
Vulnerability Summary: CVE-2025-25153 Cross-Site Request Forgery (CSRF) vulnerability in djjmz Simple Auto Tag allows Stored XSS. This issue affects Simple...
CVE Alert: CVE-2025-25152
Vulnerability Summary: CVE-2025-25152 Cross-Site Request Forgery (CSRF) vulnerability in LukaszWiecek Smart DoFollow allows Stored XSS. This issue affects Smart DoFollow:...
CVE Alert: CVE-2025-25140
Vulnerability Summary: CVE-2025-25140 Cross-Site Request Forgery (CSRF) vulnerability in Scriptonite Simple User Profile allows Stored XSS. This issue affects Simple...
CVE Alert: CVE-2025-25160
Vulnerability Summary: CVE-2025-25160 Cross-Site Request Forgery (CSRF) vulnerability in Mark Barnes Style Tweaker allows Stored XSS. This issue affects Style...
CVE Alert: CVE-2025-25163
Vulnerability Summary: CVE-2025-25163 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Zach Swetz Plugin A/B...
CVE Alert: CVE-2025-25148
Vulnerability Summary: CVE-2025-25148 Cross-Site Request Forgery (CSRF) vulnerability in ElbowRobo Read More Copy Link allows Stored XSS. This issue affects...
CVE Alert: CVE-2025-25147
Vulnerability Summary: CVE-2025-25147 Cross-Site Request Forgery (CSRF) vulnerability in Phillip.Gooch Auto SEO allows Stored XSS. This issue affects Auto SEO:...
CVE Alert: CVE-2025-25159
Vulnerability Summary: CVE-2025-25159 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in robert_kolatzek WP doodlez allows Stored...
CVE Alert: CVE-2025-25155
Vulnerability Summary: CVE-2025-25155 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in efreja Music Sheet Viewer...
CVE Alert: CVE-2025-25156
Vulnerability Summary: CVE-2025-25156 Cross-Site Request Forgery (CSRF) vulnerability in Stanko Metodiev Quote Comments allows Stored XSS. This issue affects Quote...
CVE Alert: CVE-2025-25168
Vulnerability Summary: CVE-2025-25168 Cross-Site Request Forgery (CSRF) vulnerability in blackandwhitedigital BookPress – For Book Authors allows Cross-Site Scripting (XSS). This...
CVE Alert: CVE-2025-25167
Vulnerability Summary: CVE-2025-25167 Missing Authorization vulnerability in blackandwhitedigital BookPress – For Book Authors allows Exploiting Incorrectly Configured Access Control Security...
CVE Alert: CVE-2025-25154
Vulnerability Summary: CVE-2025-25154 Cross-Site Request Forgery (CSRF) vulnerability in scweber Custom Comment Notifications allows Stored XSS. This issue affects Custom...
CVE Alert: CVE-2025-1107
Vulnerability Summary: CVE-2025-1107 Unverified password change vulnerability in Janto, versions prior to r12. This could allow an unauthenticated attacker to...
CVE Alert: CVE-2025-1103
Vulnerability Summary: CVE-2025-1103 A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function...
CVE Alert: CVE-2025-25166
Vulnerability Summary: CVE-2025-25166 Cross-Site Request Forgery (CSRF) vulnerability in gabrieldarezzo InLocation allows Stored XSS. This issue affects InLocation: from n/a...
CVE Alert: CVE-2025-1108
Vulnerability Summary: CVE-2025-1108 Insufficient data authenticity verification vulnerability in Janto, versions prior to r12. This allows an unauthenticated attacker to...
