CVE Alert: CVE-2025-52620
Vulnerability Summary: CVE-2025-52620 HCL BigFix SaaS Authentication Service is affected by a Cross-Site Scripting (XSS) vulnerability. The image upload functionality...
Vulnerabilities
CVE Alert: CVE-2025-52771
Vulnerability Summary: CVE-2025-52771 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bcupham Video Expander allows Stored...
CVE Alert: CVE-2025-53330
Vulnerability Summary: CVE-2025-53330 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WpEstate WP Rentals allows Stored...
CVE Alert: CVE-2025-53342
Vulnerability Summary: CVE-2025-53342 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GoodLayers Modernize allows Stored XSS....
CVE Alert: CVE-2025-53343
Vulnerability Summary: CVE-2025-53343 Missing Authorization vulnerability in GoodLayers Modernize allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-53341
Vulnerability Summary: CVE-2025-53341 Missing Authorization vulnerability in Themovation Stratus allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects...
CVE Alert: CVE-2025-53241
Vulnerability Summary: CVE-2025-53241 Server-Side Request Forgery (SSRF) vulnerability in kodeshpa Simplified allows Server Side Request Forgery. This issue affects Simplified:...
CVE Alert: CVE-2025-53249
Vulnerability Summary: CVE-2025-53249 Cross-Site Request Forgery (CSRF) vulnerability in hakeemnala Build App Online allows Cross Site Request Forgery. This issue...
CVE Alert: CVE-2025-53587
Vulnerability Summary: CVE-2025-53587 Cross-Site Request Forgery (CSRF) vulnerability in ApusTheme Findgo allows Cross Site Request Forgery. This issue affects Findgo:...
CVE Alert: CVE-2025-53581
Vulnerability Summary: CVE-2025-53581 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in artiosmedia RSS Feed Pro allows...
CVE Alert: CVE-2025-53582
Vulnerability Summary: CVE-2025-53582 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WordLift WordLift allows Stored XSS....
CVE Alert: CVE-2025-54717
Vulnerability Summary: CVE-2025-54717 Missing Authorization vulnerability in e-plugins WP Membership allows Exploiting Incorrectly Configured Access Control Security Levels. This issue...
CVE Alert: CVE-2025-54712
Vulnerability Summary: CVE-2025-54712 Missing Authorization vulnerability in hashthemes Easy Elementor Addons allows Exploiting Incorrectly Configured Access Control Security Levels. This...
CVE Alert: CVE-2025-53575
Vulnerability Summary: CVE-2025-53575 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in primersoftware Primer MyData for Woocommerce...
CVE Alert: CVE-2025-54715
Vulnerability Summary: CVE-2025-54715 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Dmitry V. (CEO of...
CVE Alert: CVE-2025-53347
Vulnerability Summary: CVE-2025-53347 Cross-Site Request Forgery (CSRF) vulnerability in Laborator Kalium allows Cross Site Request Forgery. This issue affects Kalium:...
CVE Alert: CVE-2025-54729
Vulnerability Summary: CVE-2025-54729 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Webba Appointment Booking Webba Booking...
CVE Alert: CVE-2025-54728
Vulnerability Summary: CVE-2025-54728 Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM On Demand Search And Replace allows Cross Site Request...
CVE Alert: CVE-2025-54054
Vulnerability Summary: CVE-2025-54054 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AA Web Servant 12 Step...
CVE Alert: CVE-2025-54708
Vulnerability Summary: CVE-2025-54708 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins B Blocks allows DOM-Based...
CVE Alert: CVE-2025-54730
Vulnerability Summary: CVE-2025-54730 Missing Authorization vulnerability in PARETO Digital Embedder for Google Reviews allows Accessing Functionality Not Properly Constrained by...
CVE Alert: CVE-2025-54736
Vulnerability Summary: CVE-2025-54736 Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NordicMade Savoy allows Retrieve Embedded...
CVE Alert: CVE-2025-54740
Vulnerability Summary: CVE-2025-54740 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michael Nelson Print My Blog...
CVE Alert: CVE-2025-54739
Vulnerability Summary: CVE-2025-54739 Missing Authorization vulnerability in POSIMYTH Nexter Blocks allows Exploiting Incorrectly Configured Access Control Security Levels. This issue...
