Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 37 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-32525 WordPress JetFormBuilder plugin <= 3.5.6.1 - Remote Code Execution (RCE) vulnerability jetmonstersJetFormBuilder 中危 -2026-03-25 16:15:08 Deep Dive
CVE-2026-4373 JetFormBuilder <= 3.5.6.2 - Unauthenticated Arbitrary File Read via Media Field jetmonstersJetFormBuilder — Dynamic Blocks Form Builder High 7.5 2026-03-21 06:45:14 Deep Dive
CVE-2025-69013 WordPress Stratum plugin <= 1.6.1 - Broken Access Control vulnerability jetmonstersStratum Medium 4.3 2025-12-30 10:47:53 Deep Dive
CVE-2025-66078 WordPress Hotel Booking Lite plugin <= 5.2.3 - Remote Code Execution (RCE) vulnerability jetmonstersHotel Booking Lite Critical 9.1 2025-12-18 07:22:18 Deep Dive
CVE-2025-49914 WordPress Restaurant Menu by MotoPress plugin <= 2.4.7 - Sensitive Data Exposure vulnerability jetmonstersRestaurant Menu by MotoPress--2025-12-18 07:21:44 Deep Dive
CVE-2025-11991 JetFormBuilder <= 3.5.3 - Missing Authorization to Unauthenticated Form Generation jetmonstersJetFormBuilder — Dynamic Blocks Form Builder Medium 5.3 2025-12-16 07:21:06 Deep Dive
CVE-2025-8195 JetWidgets For Elementor <= 1.0.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Comparison and Subscribe Widgets jetmonstersJetWidgets For Elementor Medium 6.4 2025-12-13 08:21:14 Deep Dive
CVE-2025-64384 WordPress JetFormBuilder plugin <= 3.5.3 - Broken Access Control vulnerability jetmonstersJetFormBuilder Medium 5.3 2025-11-13 09:24:36 Deep Dive
CVE-2025-58252 WordPress Getwid Plugin <= 2.1.2 - Sensitive Data Exposure Vulnerability jetmonstersGetwid Medium 4.3 2025-09-22 18:23:28 Deep Dive
CVE-2025-7845 Stratum – Elementor Widgets <= 1.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Advanced Google Maps and Image Hotspot Widgets jetmonstersStratum Widgets for Elementor Medium 6.4 2025-08-01 04:24:30 Deep Dive
CVE-2025-54038 WordPress Restaurant Menu by MotoPress plugin <= 2.4.6 - Cross Site Request Forgery (CSRF) Vulnerability jetmonstersRestaurant Menu by MotoPress Medium 5.4 2025-07-16 10:36:49 Deep Dive
CVE-2025-53990 WordPress JetFormBuilder plugin <= 3.5.1.2 - PHP Object Injection Vulnerability jetmonstersJetFormBuilder High 7.2 2025-07-16 10:36:37 Deep Dive
CVE-2025-48258 WordPress Mega Menu Block plugin <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability jetmonstersMega Menu Block Medium 6.5 2025-05-19 14:45:01 Deep Dive
CVE-2025-30846 WordPress Restaurant Menu by MotoPress plugin <= 2.4.4 - Local File Inclusion vulnerability jetmonstersRestaurant Menu by MotoPress High 8.8 2025-03-27 10:55:26 Deep Dive
CVE-2024-13642 Stratum – Elementor Widgets <= 1.4.7 - Authenticated (Contributor+) Stored Cross-Site Scripting Vulnerability via Image Hotspot Widget jetmonstersStratum Widgets for Elementor Medium 6.4 2025-01-30 06:41:09 Deep Dive
CVE-2024-5020 Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript Library extendthemesColibri Page Builder Medium 6.4 2024-12-04 08:22:47 Deep Dive
CVE-2024-10316 Stratum – Elementor Widgets <= 1.4.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Templates jetmonstersStratum Widgets for Elementor Medium 4.3 2024-11-21 11:02:19 Deep Dive
CVE-2024-10872 Getwid – Gutenberg Blocks <= 2.0.12 - Authenticated (Contributor+) Stored Cross-Site Scripting jetmonstersGetwid – Gutenberg Blocks Medium 6.4 2024-11-20 11:03:43 Deep Dive
CVE-2024-10323 JetWidgets For Elementor <= 1.0.18 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload jetmonstersJetWidgets For Elementor Medium 6.4 2024-11-12 06:48:15 Deep Dive
CVE-2020-36840 Timetable and Event Schedule by MotoPress <= 2.3.8 - Missing Authorization jetmonstersTimetable and Event Schedule by MotoPress High 7.3 2024-10-16 07:31:51 Deep Dive