CVE Alert: CVE-2025-8170
Vulnerability Summary: CVE-2025-8170 A vulnerability classified as critical was found in TOTOLINK T6 4.1.5cu.748_B20211015. This vulnerability affects the function tcpcheck_net...
CVE
CVE Alert: CVE-2025-3669
Vulnerability Summary: CVE-2025-3669 The Supreme Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
CVE Alert: CVE-2025-6539
Vulnerability Summary: CVE-2025-6539 The Voltax Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter...
CVE Alert: CVE-2025-5084
Vulnerability Summary: CVE-2025-5084 The Post Grid Master plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘argsArray’ parameter...
CVE Alert: CVE-2025-6588
Vulnerability Summary: CVE-2025-6588 The FunnelCockpit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘error’ parameter in all...
CVE Alert: CVE-2025-4608
Vulnerability Summary: CVE-2025-4608 The Structured Content plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sc_fs_local_business shortcode...
CVE Alert: CVE-2025-6441
Vulnerability Summary: CVE-2025-6441 The Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition plugin for WordPress is vulnerable...
CVE Alert: CVE-2025-7835
Vulnerability Summary: CVE-2025-7835 The iThoughts Advanced Code Editor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions...
CVE Alert: CVE-2025-6382
Vulnerability Summary: CVE-2025-6382 The Taeggie Feed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's taeggie-feed shortcode...
CVE Alert: CVE-2025-6385
Vulnerability Summary: CVE-2025-6385 The WP Applink plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘title’ parameter in...
CVE Alert: CVE-2025-6387
Vulnerability Summary: CVE-2025-6387 The WP Get The Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’...
CVE Alert: CVE-2025-7780
Vulnerability Summary: CVE-2025-7780 The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to,...
CVE Alert: CVE-2025-7695
Vulnerability Summary: CVE-2025-7695 The Dataverse Integration plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization checks within...
CVE Alert: CVE-2025-7690
Vulnerability Summary: CVE-2025-7690 The Affiliate Plus plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to,...
CVE Alert: CVE-2025-7640
Vulnerability Summary: CVE-2025-7640 The hiWeb Export Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up...
CVE Alert: CVE-2025-7822
Vulnerability Summary: CVE-2025-7822 The WP Wallcreeper plugin for WordPress is vulnerable to unauthorized modification of data due to a missing...
CVE Alert: CVE-2025-4822
Vulnerability Summary: CVE-2025-4822 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bayraktar Solar Energies...
CVE Alert: CVE-2025-5243
Vulnerability Summary: CVE-2025-5243 Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Special Elements used in an OS Command...
CVE Alert: CVE-2025-7966
Vulnerability Summary: CVE-2025-7966 The Get Youtube Subs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘channel', 'layout',...
CVE Alert: CVE-2025-8071
Vulnerability Summary: CVE-2025-8071 Mine CloudVod plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘audio’ parameter in all...
CVE Alert: CVE-2025-7959
Vulnerability Summary: CVE-2025-7959 The Station Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width' and 'height’...
CVE Alert: CVE-2025-33013
Vulnerability Summary: CVE-2025-33013 IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0,...
CVE Alert: CVE-2025-4784
Vulnerability Summary: CVE-2025-4784 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Moderec Tourtella allows...
CVE Alert: CVE-2025-45731
Vulnerability Summary: CVE-2025-45731 A group deletion race condition in 2FAuth v5.5.0 causes data inconsistencies and orphaned accounts when a group...
