| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-27280 | WordPress Archive Page plugin <= 1.0.2 - Cross Site Scripting (XSS) vulnerability | Alobaidi | Archive Page | Medium | 6.5 | 2025-02-24 14:48:48 | Deep Dive |
| CVE-2024-13445 | Elementor Website Builder – More Than Just a Page Builder <= 3.27.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | elemntor | Elementor Website Builder – more than just a page builder | Medium | 6.4 | 2025-02-20 04:22:25 | Deep Dive |
| CVE-2024-13592 | Team Builder For WPBakery Page Builder(Formerly Visual Composer) <= 1.0 - Authenticated (Contributor+) Local File Inclusion | labibahmed42 | Team Builder For WPBakery Page Builder(Formerly Visual Composer) | High | 7.5 | 2025-02-19 07:32:15 | Deep Dive |
| CVE-2024-13591 | Team Builder For WPBakery Page Builder(Formerly Visual Composer) <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | labibahmed42 | Team Builder For WPBakery Page Builder(Formerly Visual Composer) | Medium | 6.4 | 2025-02-19 07:32:14 | Deep Dive |
| CVE-2024-13582 | Simple Pricing Tables For WPBakery Page Builder(Formerly Visual Composer) <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | labibahmed42 | Simple Pricing Tables For WPBakery Page Builder(Formerly Visual Composer) | Medium | 6.4 | 2025-02-18 04:21:21 | Deep Dive |
| CVE-2025-24616 | WordPress Uix Page Builder Plugin <= 1.7.3 - Reflected Cross Site Scripting (XSS) vulnerability | UIUX Lab | Uix Page Builder | High | 7.1 | 2025-02-14 12:44:35 | Deep Dive |
| CVE-2025-26580 | WordPress Page/Post Specific Social Share Buttons plugin <= 2.1 - CSRF to Stored XSS vulnerability | Complete SEO | Page/Post Specific Social Share Buttons | High | 7.1 | 2025-02-13 13:53:07 | Deep Dive |
| CVE-2025-26549 | WordPress WP Html Page Sitemap plugin <= 2.2 - CSRF to Stored Cross-Site Scripting | pa1 | WP Html Page Sitemap | High | 7.1 | 2025-02-13 13:52:51 | Deep Dive |
| CVE-2024-10322 | Brizy – Page Builder <= 2.6.8 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | themefusecom | Brizy – Page Builder | Medium | 6.4 | 2025-02-12 12:22:09 | Deep Dive |
| CVE-2024-10960 | Brizy – Page Builder <= 2.6.4 - Authenticated (Contributor+) Arbitrary File Upload via storeUploads | themefusecom | Brizy – Page Builder | Critical | 9.9 | 2025-02-12 11:11:16 | Deep Dive |
| CVE-2025-0506 | Rise Blocks – A Complete Gutenberg Page Builder <= 3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via TitleTag Parameter | eaglethemes | Rise Blocks – A Complete Gutenberg Page Builder | Medium | 6.4 | 2025-02-12 09:22:48 | Deep Dive |
| CVE-2025-25138 | WordPress On Page SEO + Social Live Chat (Formerly OPS) plugin <= 2.0.0 - CSRF to Stored XSS vulnerability | Rishi | On Page SEO + Whatsapp Chat Button | High | 7.1 | 2025-02-07 10:11:52 | Deep Dive |
| CVE-2025-25096 | WordPress RSS in Page plugin <= 2.9.1 - Stored Cross Site Scripting (XSS) vulnerability | titusbicknell | RSS in Page | Medium | 6.5 | 2025-02-07 10:11:35 | Deep Dive |
| CVE-2025-25072 | WordPress WP Admin Custom Page plugin <= 1.5.0 - CSRF to Stored XSS vulnerability | thunderbax | WP Admin Custom Page | High | 7.1 | 2025-02-07 10:11:26 | Deep Dive |
| CVE-2025-0859 | Post and Page Builder by BoldGrid <= 1.27.6 - Path Traversal to Authenticated (Contributor+) Arbitrary File Read via template_via_url Function | boldgrid | Post and Page Builder by BoldGrid – Visual Drag and Drop Editor | Medium | 6.5 | 2025-02-06 09:21:18 | Deep Dive |
| CVE-2025-24677 | WordPress Post/Page Copying Tool to Export and Import post/page for Cross site Migration Plugin <= 2.0.3 - Remote Code Execution (RCE) vulnerability | wpspin | Post/Page Copying Tool | Critical | 9.9 | 2025-02-04 14:21:15 | Deep Dive |
| CVE-2024-13733 | SKT Blocks – Gutenberg based Page Builder <= 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting | sonalsinha21 | SKT Blocks – Gutenberg based Page Builder | Medium | 6.4 | 2025-02-04 09:21:08 | Deep Dive |
| CVE-2025-22703 | WordPress Forge – Front-End Page Builder plugin <= 1.4.6 - CSRF to Stored Cross Site Scripting (XSS) vulnerability | manuelvicedo | Forge – Front-End Page Builder | High | 7.1 | 2025-02-03 14:23:53 | Deep Dive |
| CVE-2025-22688 | WordPress Unlimited Page Sidebars plugin <= 0.2.6 - CSRF to Stored XSS vulnerability | Ederson Peka | Unlimited Page Sidebars | High | 7.1 | 2025-02-03 14:23:52 | Deep Dive |
| CVE-2025-24569 | WordPress PDF Generator Addon for Elementor Page Builder plugin <= 1.7.5 - Arbitrary File Read vulnerability | RedefiningTheWeb | PDF Generator Addon for Elementor Page Builder | High | 7.5 | 2025-02-03 14:22:47 | Deep Dive |