| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-5730 | Easy Contact Form Lite < 1.1.29 - Contributor+ Stored XSS | Unknown | Contact Form Plugin | 中危 | - | 2025-06-30 06:00:02 | Deep Dive |
| CVE-2025-3745 | WP Lightbox 2 < 3.0.6.8 - Unauthenticated Stored XSS | Unknown | WP Lightbox 2 | - | - | 2025-06-30 06:00:01 | Deep Dive |
| CVE-2025-5526 | BuddyPress Docs < 2.2.5 - Subscriber+ Arbitrary Document Read/Update | Unknown | BuddyPress Docs | - | - | 2025-06-27 06:00:12 | Deep Dive |
| CVE-2025-5194 | WP Map Block by aBlocks < 2.0.3 - Contributor+ Stored XSS via Marker | Unknown | WP Map Block | - | - | 2025-06-27 06:00:11 | Deep Dive |
| CVE-2025-5093 | Responsive Lightbox & Gallery < 2.5.2 - Contributor+ Stored XSS | Unknown | Responsive Lightbox & Gallery | - | - | 2025-06-27 06:00:08 | Deep Dive |
| CVE-2025-5035 | Firelight Lightbox < 2.3.16 - Contributor+ Stored XSS | Unknown | Firelight Lightbox | - | - | 2025-06-27 06:00:03 | Deep Dive |
| CVE-2021-4457 | ZoomSounds < 6.05 - Unauthenticated Arbitrary File Upload | Unknown | ZoomSounds | - | - | 2025-06-25 14:45:58 | Deep Dive |
| CVE-2025-5034 | WP File Download < 6.2.6 - Reflected XSS | Unknown | wp-file-download | - | - | 2025-06-21 06:00:09 | Deep Dive |
| CVE-2025-5125 | Custom Post Carousels with Owl < 1.4.12 - Contributor+ Stored XSS | Unknown | Custom Post Carousels with Owl | - | - | 2025-06-20 06:00:12 | Deep Dive |
| CVE-2025-4955 | tarteaucitron.io < 1.9.5 - Contributor+ Stored XSS | Unknown | tarteaucitron.io | - | - | 2025-06-18 06:00:02 | Deep Dive |
| CVE-2025-5209 | Ivory Search < 5.5.10 - Admin+ Stored XSS | Unknown | Ivory Search | - | - | 2025-06-17 06:00:05 | Deep Dive |
| CVE-2025-4954 | Axle Demo Importer <= 1.0.3 - Author+ Arbitrary File Upload | Unknown | Axle Demo Importer | - | - | 2025-06-10 06:00:12 | Deep Dive |
| CVE-2025-4840 | Likes and Dislikes Plugin <= 1.0.0 - Unauthenticated SQL Injection | Unknown | inprosysmedia-likes-dislikes-post | - | - | 2025-06-10 06:00:08 | Deep Dive |
| CVE-2025-3582 | Newsletter < 8.8.5 - Admin+ Stored XSS via Form | Unknown | Newsletter | - | - | 2025-06-09 06:00:14 | Deep Dive |
| CVE-2025-4652 | Broadstreet < 1.51.8 - Reflected XSS | Unknown | Broadstreet | - | - | 2025-06-09 06:00:14 | Deep Dive |
| CVE-2025-3581 | Newsletter < 8.8.5 - Admin+ Stored XSS via Widget | Unknown | Newsletter | - | - | 2025-06-09 06:00:02 | Deep Dive |
| CVE-2023-2921 | Short URL <= 1.6.8 - Subscriber+ SQLi | Unknown | Short URL | - | - | 2025-06-06 06:00:05 | Deep Dive |
| CVE-2025-4580 | File Provider <= 1.2.3 - Item Deletion via CSRF | Unknown | File Provider | - | - | 2025-06-04 06:00:07 | Deep Dive |
| CVE-2025-4578 | File Provider <= 1.2.3 - Unauthenticated SQLi | Unknown | File Provider | - | - | 2025-06-04 06:00:06 | Deep Dive |
| CVE-2025-4567 | Post Slider and Carousel with Widget < 3.2.10 - Admin+ Stored XSS | Unknown | Post Slider and Post Carousel with Post Vertical Scrolling Widget | - | - | 2025-06-03 06:00:18 | Deep Dive |