CVE Alert: CVE-2025-39521
Vulnerability Summary: CVE-2025-39521 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ashish Ajani Contact Form vCard...
CVE
CVE Alert: CVE-2025-39519
Vulnerability Summary: CVE-2025-39519 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in rtpHarry Bulk Page Stub Creator...
CVE Alert: CVE-2025-39526
Vulnerability Summary: CVE-2025-39526 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in nicdark...
CVE Alert: CVE-2025-39562
Vulnerability Summary: CVE-2025-39562 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in codepeople Payment Form for PayPal...
CVE Alert: CVE-2025-39554
Vulnerability Summary: CVE-2025-39554 Missing Authorization vulnerability in Elliot Sowersby / RelyWP AI Text to Speech allows Exploiting Incorrectly Configured Access...
CVE Alert: CVE-2025-39559
Vulnerability Summary: CVE-2025-39559 Missing Authorization vulnerability in Eivin Landa Bring Fraktguiden for WooCommerce allows Exploiting Incorrectly Configured Access Control Security...
CVE Alert: CVE-2025-39550
Vulnerability Summary: CVE-2025-39550 Deserialization of Untrusted Data vulnerability in Shahjahan Jewel FluentCommunity allows Object Injection. This issue affects FluentCommunity: from...
CVE Alert: CVE-2025-39551
Vulnerability Summary: CVE-2025-39551 Deserialization of Untrusted Data vulnerability in Mahmudul Hasan Arif FluentBoards allows Object Injection. This issue affects FluentBoards:...
CVE Alert: CVE-2025-39558
Vulnerability Summary: CVE-2025-39558 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CRM Perks CRM Perks allows...
CVE Alert: CVE-2025-39542
Vulnerability Summary: CVE-2025-39542 Incorrect Privilege Assignment vulnerability in Jauhari Xelion Xelion Webchat allows Privilege Escalation. This issue affects Xelion Webchat:...
CVE Alert: CVE-2025-39586
Vulnerability Summary: CVE-2025-39586 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid allows...
CVE Alert: CVE-2025-39535
Vulnerability Summary: CVE-2025-39535 Authentication Bypass Using an Alternate Path or Channel vulnerability in appsbd Vitepos allows Authentication Abuse. This issue...
CVE Alert: CVE-2025-39587
Vulnerability Summary: CVE-2025-39587 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix Cost Calculator...
CVE Alert: CVE-2025-39588
Vulnerability Summary: CVE-2025-39588 Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons allows Object Injection. This issue...
CVE Alert: CVE-2025-39583
Vulnerability Summary: CVE-2025-39583 Missing Authorization vulnerability in berthaai BERTHA AI allows Exploiting Incorrectly Configured Access Control Security Levels. This issue...
CVE Alert: CVE-2025-39567
Vulnerability Summary: CVE-2025-39567 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shamalli Web Directory Free allows...
CVE Alert: CVE-2025-39580
Vulnerability Summary: CVE-2025-39580 Missing Authorization vulnerability in jidaikobo Dashi allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects...
CVE Alert: CVE-2025-39568
Vulnerability Summary: CVE-2025-39568 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Arture B.V. StoreContrl Woocommerce...
CVE Alert: CVE-2025-39569
Vulnerability Summary: CVE-2025-39569 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in taskbuilder Taskbuilder allows...
CVE Alert: CVE-2025-43012
Vulnerability Summary: CVE-2025-43012 In JetBrains Toolbox App before 2.6 command injection in SSH plugin was possible Affected Endpoints: No affected...
CVE Alert: CVE-2025-43013
Vulnerability Summary: CVE-2025-43013 In JetBrains Toolbox App before 2.6 unencrypted credential transmission during SSH authentication was possible Affected Endpoints: No...
CVE Alert: CVE-2025-39596
Vulnerability Summary: CVE-2025-39596 Weak Authentication vulnerability in Quentn.com GmbH Quentn WP allows Privilege Escalation. This issue affects Quentn WP: from...
CVE Alert: CVE-2025-42921
Vulnerability Summary: CVE-2025-42921 In JetBrains Toolbox App before 2.6 host key verification was missing in SSH plugin Affected Endpoints: No...
CVE Alert: CVE-2025-39595
Vulnerability Summary: CVE-2025-39595 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Quentn.com GmbH Quentn...
