CVE Alert: CVE-2025-22740
Vulnerability Summary: CVE-2025-22740 Missing Authorization vulnerability in Automattic Sensei LMS allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects...
CVE
CVE Alert: CVE-2024-55073
Vulnerability Summary: CVE-2024-55073 A Broken Object Level Authorization vulnerability in the component /api/users/{user-id} of hay-kot mealie v2.2.0 allows users to...
CVE Alert: CVE-2025-26898
Vulnerability Summary: CVE-2025-26898 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Shinetheme Traveler.This issue...
CVE Alert: CVE-2025-22739
Vulnerability Summary: CVE-2025-22739 Missing Authorization vulnerability in ThimPress LearnPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LearnPress:...
CVE Alert: CVE-2025-26956
Vulnerability Summary: CVE-2025-26956 Missing Authorization vulnerability in Shinetheme Traveler.This issue affects Traveler: from n/a through 3.1.8. Affected Endpoints: No affected...
CVE Alert: CVE-2025-26890
Vulnerability Summary: CVE-2025-26890 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in PluginUs.Net...
CVE Alert: CVE-2025-26874
Vulnerability Summary: CVE-2025-26874 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MemberSpace allows Reflected XSS.This issue...
CVE Alert: CVE-2025-2878
Vulnerability Summary: CVE-2025-2878 A vulnerability was found in Kentico CMS up to 13.0.178. It has been declared as problematic. Affected...
CVE Alert: CVE-2025-31101
Vulnerability Summary: CVE-2025-31101 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vault Group Pty Ltd VaultRE...
CVE Alert: CVE-2025-26733
Vulnerability Summary: CVE-2025-26733 Missing Authorization vulnerability in Shinetheme Traveler.This issue affects Traveler: from n/a through 3.1.8. Affected Endpoints: No affected...
CVE Alert: CVE-2025-31031
Vulnerability Summary: CVE-2025-31031 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Astoundify Job Colors for WP...
CVE Alert: CVE-2025-26873
Vulnerability Summary: CVE-2025-26873 Deserialization of Untrusted Data vulnerability in Shinetheme Traveler.This issue affects Traveler: from n/a through 3.1.8. Affected Endpoints:...
CVE Alert: CVE-2025-28911
Vulnerability Summary: CVE-2025-28911 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gravity2pdf Gravity 2 PDF allows...
CVE Alert: CVE-2025-28899
Vulnerability Summary: CVE-2025-28899 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound WP Event Ticketing allows...
CVE Alert: CVE-2025-28917
Vulnerability Summary: CVE-2025-28917 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Custom Smilies allows Stored...
CVE Alert: CVE-2025-28916
Vulnerability Summary: CVE-2025-28916 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in NotFound...
CVE Alert: CVE-2025-28903
Vulnerability Summary: CVE-2025-28903 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Driving Directions allows Reflected...
CVE Alert: CVE-2025-28935
Vulnerability Summary: CVE-2025-28935 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in puzich Fancybox Plus allows Reflected...
CVE Alert: CVE-2025-28898
Vulnerability Summary: CVE-2025-28898 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Multistore...
CVE Alert: CVE-2025-28939
Vulnerability Summary: CVE-2025-28939 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Google...
CVE Alert: CVE-2025-28934
Vulnerability Summary: CVE-2025-28934 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Simple Post Series allows...
CVE Alert: CVE-2025-28928
Vulnerability Summary: CVE-2025-28928 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sureshdsk Are you robot google...
CVE Alert: CVE-2025-2819
Vulnerability Summary: CVE-2025-2819 There is a risk of unauthorized file uploads in GT-SoftControl and potential file overwrites due to insufficient...
CVE Alert: CVE-2025-28942
Vulnerability Summary: CVE-2025-28942 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Trust Payments Trust...
