| CVE-2024-56341 | IBM Content Navigator cross-site scripting | IBM | Content Navigator | Medium | 5.4 | 2025-04-02 15:08:22 | Deep Dive |
| CVE-2025-31564 | WordPress Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One plugin <= 2.2.6 - SQL Injection vulnerability | aitool | Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One | High | 8.5 | 2025-04-01 20:58:13 | Deep Dive |
| CVE-2025-30905 | WordPress Secure Copy Content Protection and Content Locking plugin <= 4.4.3 - Cross Site Scripting (XSS) vulnerability | Ays Pro | Secure Copy Content Protection and Content Locking | High | 7.1 | 2025-04-01 20:58:08 | Deep Dive |
| CVE-2025-31809 | WordPress Labinator Content Types Duplicator Plugin <= 1.1.3 - Cross Site Request Forgery (CSRF) vulnerability | Labinator | Labinator Content Types Duplicator | Medium | 4.3 | 2025-04-01 14:51:39 | Deep Dive |
| CVE-2025-31780 | WordPress Append Content plugin <= 2.1.1 - CSRF to Settings Change vulnerability | Andy Stratton | Append Content | Medium | 6.5 | 2025-04-01 14:51:25 | Deep Dive |
| CVE-2025-31770 | WordPress Content Manager Light plugin <= 3.2 - Cross Site Scripting (XSS) vulnerability | OTWthemes | Content Manager Light | Medium | 6.5 | 2025-04-01 14:51:19 | Deep Dive |
| CVE-2025-31574 | WordPress Custom Content Scrollbar plugin <= 1.3 - Cross Site Scripting (XSS) vulnerability | SoftHopper | Custom Content Scrollbar | Medium | 6.5 | 2025-03-31 12:55:22 | Deep Dive |
| CVE-2025-31555 | WordPress ContentMX Content Publisher plugin <= 1.0.6 - Broken Access Control vulnerability | ContentMX | ContentMX Content Publisher | Medium | 5.4 | 2025-03-31 12:55:16 | Deep Dive |
| CVE-2025-31093 | WordPress RPS Include Content plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability | redpixelstudios | RPS Include Content | Medium | 6.5 | 2025-03-28 09:39:53 | Deep Dive |
| CVE-2025-30918 | WordPress Structured Content plugin <= 1.6.3 - Cross Site Scripting (XSS) vulnerability | Gordon Böhme | Structured Content | Medium | 6.5 | 2025-03-27 10:55:55 | Deep Dive |
| CVE-2025-30874 | WordPress Specific Content For Mobile plugin <= 0.5.3 - Broken Access Control vulnerability | Jose Mortellaro | Specific Content For Mobile | Medium | 4.3 | 2025-03-27 10:55:38 | Deep Dive |
| CVE-2025-30599 | WordPress WP Parallax Content Slider plugin <= 0.9.8 - Cross Site Scripting (XSS) vulnerability | wp-maverick | WP Parallax Content Slider | Medium | 5.9 | 2025-03-24 13:47:20 | Deep Dive |
| CVE-2025-30573 | WordPress My Default Post Content plugin <= - 0.7.3 Cross Site Scripting (XSS) Vulnerability | mrdenny | My Default Post Content | Medium | 5.9 | 2025-03-24 13:47:07 | Deep Dive |
| CVE-2024-13882 | Aiomatic - AI Content Writer, Editor, ChatBot & AI Toolkit <= 2.3.8 - Missing Authorization to Authenticated (Contributor+) Arbitrary File Upload | CodeRevolution | Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit | High | 8.8 | 2025-03-08 08:22:57 | Deep Dive |
| CVE-2024-13816 | Aiomatic - AI Content Writer, Editor, ChatBot & AI Toolkit <= 2.3.6 - Missing Authorization to Authenticated (Subscriber+) Multiple Administrator Actions | CodeRevolution | Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit | Medium | 5.4 | 2025-03-08 08:22:56 | Deep Dive |
| CVE-2024-12634 | Related Posts, Inline Related Posts, Contextual Related Posts, Related Content By PickPlugins <= 2.0.59 - Cross-Site Request Forgery to Stored Cross-Site Scripting | pickplugins | Related Posts, Inline Related Posts, Contextual Related Posts, Related Content By PickPlugins | Medium | 6.1 | 2025-03-07 11:12:55 | Deep Dive |
| CVE-2024-11153 | Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More <= 2.5.0 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure | danieliser | Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More | Medium | 5.3 | 2025-03-05 11:22:11 | Deep Dive |
| CVE-2025-1702 | Ultimate Member <= 2.10.0 - Unauthenticated SQL Injection via search Parameter | ultimatemember | Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin | High | 7.5 | 2025-03-05 11:22:09 | Deep Dive |
| CVE-2025-0512 | Structured Content (JSON-LD) #wpsc <= 1.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via sc_fs_local_business Shortcode | gorbo | Structured Content (JSON-LD) #wpsc | Medium | 6.4 | 2025-03-04 08:23:41 | Deep Dive |
| CVE-2025-23668 | WordPress ChatGPT Open AI Images & Content for WooCommerce plugin <= 2.2.0 - Reflected Cross Site Scripting (XSS) vulnerability | Mauricio Urrego | ChatGPT Open AI Images & Content for WooCommerce | High | 7.1 | 2025-03-03 13:30:16 | Deep Dive |