| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-3584 | Newsletter < 8.8.2 - Admin+ Stored XSS via Subscription | Unknown | Newsletter | - | - | 2025-06-03 06:00:17 | Deep Dive |
| CVE-2025-3662 | FancyBox for WordPress < 3.3.6 - Unauthenticated Stored XSS | Unknown | FancyBox for WordPress | - | - | 2025-06-03 06:00:17 | Deep Dive |
| CVE-2025-3951 | WP-Optimize < 4.2.0 - Admin+ SQLi | Unknown | WP-Optimize | - | - | 2025-06-02 06:00:19 | Deep Dive |
| CVE-2025-1485 | Real Cookie Banner < 5.1.6 - Admin+ Stored XSS | Unknown | Real Cookie Banner: GDPR & ePrivacy Cookie Consent | - | - | 2025-06-02 06:00:02 | Deep Dive |
| CVE-2025-4429 | WordPress Gearside Developer Dashboard <= 1.0.72 - Reflected XSS | Unknown | Gearside Developer Dashboard | - | - | 2025-05-30 06:00:06 | Deep Dive |
| CVE-2025-4133 | Blog2Social: Social Media Auto Post & Scheduler < 8.4.0 - Contributor+ Stored XSS | Unknown | Blog2Social: Social Media Auto Post & Scheduler | - | - | 2025-05-22 06:00:09 | Deep Dive |
| CVE-2025-4094 | Digits < 8.4.6.1 - Auth Bypass via OTP Bruteforcing | Unknown | DIGITS: WordPress Mobile Number Signup and Login | - | - | 2025-05-21 06:00:09 | Deep Dive |
| CVE-2025-2929 | Order Delivery Date Pro for WooCommerce < 12.4.0 - Reflected XSS | Unknown | Order Delivery Date | - | - | 2025-05-20 06:00:06 | Deep Dive |
| CVE-2025-2561 | Ninja Forms < 3.10.1 - Admin+ Stored XSS | Unknown | Ninja Forms | - | - | 2025-05-19 06:00:06 | Deep Dive |
| CVE-2025-2524 | Ninja Forms < 3.10.1 - Admin+ Stored XSS | Unknown | Ninja Forms | - | - | 2025-05-19 06:00:05 | Deep Dive |
| CVE-2025-2560 | Ninja Forms < 3.10.1 - Admin+ Stored XSS | Unknown | Ninja Forms | - | - | 2025-05-19 06:00:05 | Deep Dive |
| CVE-2025-1627 | Qi Blocks < 1.4 - Contributor+ Stored XSS via ToC Block | Unknown | Qi Blocks | - | - | 2025-05-19 06:00:05 | Deep Dive |
| CVE-2025-1625 | Qi Blocks < 1.4 - Contributor+ Stored XSS via Counter Block | Unknown | Qi Blocks | - | - | 2025-05-19 06:00:04 | Deep Dive |
| CVE-2025-1626 | Qi Blocks < 1.4 - Contributor+ Stored XSS vi Countdown Block | Unknown | Qi Blocks | - | - | 2025-05-19 06:00:04 | Deep Dive |
| CVE-2025-4190 | CSV Mass Importer <= 1.2 - Admin+ Arbitrary File Upload | Unknown | CSV Mass Importer | - | - | 2025-05-17 06:00:04 | Deep Dive |
| CVE-2022-4363 | Wholesale Market <= 2.2.2 - Settings Update via CSRF | Unknown | Wholesale Market | - | - | 2025-05-16 20:33:46 | Deep Dive |
| CVE-2025-3516 | Simple Lightbox < 2.9.4 - Contributor+ Stored XSS | Unknown | Simple Lightbox | - | - | 2025-05-16 06:00:05 | Deep Dive |
| CVE-2025-3201 | Kali Forms < 2.4.3 - Contributor+ Stored XSS | Unknown | Contact Form builder with drag & drop for WordPress | - | - | 2025-05-16 06:00:04 | Deep Dive |
| CVE-2024-8009 | Sensei LMS < 4.20.0 - Teacher+ Users Email Address Disclosure | Unknown | Sensei LMS | - | - | 2025-05-15 20:09:47 | Deep Dive |
| CVE-2024-6711 | Event Tickets with Ticket Scanner < 2.3.8 - Admin+ Stored XSS | Unknown | Event Tickets with Ticket Scanner | - | - | 2025-05-15 20:09:47 | Deep Dive |