CVE Alert: CVE-2025-1783
Vulnerability Summary: CVE-2025-1783 The Gallery Styles plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Gallery Block in...
Vulnerabilities
CVE Alert: CVE-2024-13359
Vulnerability Summary: CVE-2024-13359 The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to...
CVE Alert: CVE-2025-1324
Vulnerability Summary: CVE-2025-1324 The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
CVE Alert: CVE-2024-13675
Vulnerability Summary: CVE-2024-13675 The SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) plugin for WordPress is vulnerable to Stored Cross-Site...
CVE Alert: CVE-2025-1325
Vulnerability Summary: CVE-2025-1325 The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to arbitrary shortcode execution...
CVE Alert: CVE-2025-1323
Vulnerability Summary: CVE-2025-1323 The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to SQL Injection via...
CVE Alert: CVE-2024-11640
Vulnerability Summary: CVE-2024-11640 The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all...
CVE Alert: CVE-2025-27840
Vulnerability Summary: CVE-2025-27840 Espressif ESP32 chips allow 29 hidden HCI commands, such as 0xFC02 (Write memory). Affected Endpoints: No affected...
CVE Alert: CVE-2024-13649
Vulnerability Summary: CVE-2024-13649 The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to Stored...
CVE Alert: CVE-2024-10326
Vulnerability Summary: CVE-2024-10326 The RomethemeKit For Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a...
CVE Alert: CVE-2025-1664
Vulnerability Summary: CVE-2025-1664 The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to...
CVE Alert: CVE-2024-13924
Vulnerability Summary: CVE-2024-13924 The Starter Templates by FancyWP plugin for WordPress is vulnerable to Blind Server-Side Request Forgery in all...
CVE Alert: CVE-2025-2112
Vulnerability Summary: CVE-2025-2112 A vulnerability was found in user-xiangpeng yaoqishan up to a47fec4a31cbd13698c592dfdc938c8824dd25e4. It has been declared as critical. Affected...
CVE Alert: CVE-2023-52968
Vulnerability Summary: CVE-2023-52968 MariaDB Server 10.4 before 10.4.33, 10.5 before 10.5.24, 10.6 before 10.6.17, 10.7 through 10.11 before 10.11.7, 11.0...
CVE Alert: CVE-2023-52970
Vulnerability Summary: CVE-2023-52970 MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, 11.0 through 11.0.*, and 11.1 through...
CVE Alert: CVE-2023-52971
Vulnerability Summary: CVE-2023-52971 MariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN::fix_all_splittings_in_plan. Affected Endpoints: No affected endpoints...
CVE Alert: CVE-2023-52969
Vulnerability Summary: CVE-2023-52969 MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, and 11.0 through 11.0.* can sometimes...
CVE Alert: CVE-2024-13635
Vulnerability Summary: CVE-2024-13635 The VK Blocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to,...
CVE Alert: CVE-2025-0959
Vulnerability Summary: CVE-2025-0959 The Eventer - WordPress Event & Booking Manager Plugin plugin for WordPress is vulnerable to SQL Injection...
CVE Alert: CVE-2024-9458
Vulnerability Summary: CVE-2024-9458 The Reservit Hotel WordPress plugin before 3.0 does not sanitise and escape some of its settings, which...
CVE Alert: CVE-2025-1315
Vulnerability Summary: CVE-2025-1315 The InWave Jobs plugin for WordPress is vulnerable to privilege escalation via password reset in all versions...
CVE Alert: CVE-2024-13552
Vulnerability Summary: CVE-2024-13552 The SupportCandy – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Insecure Direct...
CVE Alert: CVE-2024-12634
Vulnerability Summary: CVE-2024-12634 The Related Posts, Inline Related Posts, Contextual Related Posts, Related Content By PickPlugins plugin for WordPress is...
CVE Alert: CVE-2024-13857
Vulnerability Summary: CVE-2024-13857 The WPGet API – Connect to any external REST API plugin for WordPress is vulnerable to Server-Side...
