Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 80 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-32540 WordPress Feedify – Web Push Notifications plugin <= 2.4.5 - Reflected Cross Site Scripting (XSS) vulnerability feedifyFeedify – Web Push Notifications High 7.1 2025-04-17 15:47:36 Deep Dive
CVE-2025-26741 WordPress Email Notifications for Updates <= 1.1.6 - Privilege Escalation Vulnerability AWEOS GmbHEmail Notifications for Updates High 8.8 2025-04-15 11:59:05 Deep Dive
CVE-2025-2933 Email Notifications for Updates <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update aweosEmail Notifications for Updates High 8.8 2025-04-05 01:44:46 Deep Dive
CVE-2024-13898 Simple Banner <= 3.0.4 - Authenticated (Administrator+) Stored Cross-Site Scripting rpetersen29Simple Banner – Easily add multiple Banners/Bars/Notifications/Announcements to the top or bottom of your website Medium 4.4 2025-04-04 05:22:45 Deep Dive
CVE-2025-31561 WordPress Ultimate Push Notifications plugin <= 1.2.0 - SQL Injection vulnerability CodeSolzUltimate Push Notifications High 8.5 2025-04-01 20:58:13 Deep Dive
CVE-2025-31548 WordPress Ultimate Push Notifications plugin <= 1.2.0 - Reflected Cross Site Scripting (XSS) vulnerability CodeSolzUltimate Push Notifications High 7.1 2025-04-01 20:58:12 Deep Dive
CVE-2024-13553 SMS Alert Order Notifications – WooCommerce <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation cozyvision1SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery Critical 9.8 2025-04-01 11:12:29 Deep Dive
CVE-2024-13844 Post SMTP <= 3.1.2 - Authenticated (Administrator+) SQL Injection via columns Parameter saadiqbalPost SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App Medium 4.9 2025-03-08 05:30:08 Deep Dive
CVE-2025-26984 WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.7.8 - Reflected Cross Site Scripting (XSS) vulnerability Cozy VisionSMS Alert Order Notifications High 7.1 2025-03-03 13:30:42 Deep Dive
CVE-2025-26988 WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.7.8 - SQL Injection vulnerability Cozy VisionSMS Alert Order Notifications Critical 9.3 2025-03-03 13:30:42 Deep Dive
CVE-2025-23741 WordPress Notifications Center plugin <= 1.5.2 - Reflected Cross Site Scripting (XSS) vulnerability Florian ChaillouNotifications Center High 7.1 2025-03-03 13:30:18 Deep Dive
CVE-2025-23586 WordPress WP Post Category Notifications plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability MAL73049WP Post Category Notifications High 7.1 2025-03-03 13:30:14 Deep Dive
CVE-2025-23556 WordPress Push Envoy Notifications plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability netbitsolutionsPush Envoy Notifications High 7.1 2025-03-03 13:30:12 Deep Dive
CVE-2025-0521 Post SMTP <= 3.0.2 - Unauthenticated Stored Cross-Site Scripting saadiqbalPost SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App High 7.2 2025-02-18 11:10:19 Deep Dive
CVE-2025-25154 WordPress Custom Comment Notifications plugin <= 1.0.8 - CSRF to Stored XSS vulnerability scweberCustom Comment Notifications High 7.1 2025-02-07 10:11:59 Deep Dive
CVE-2025-24693 WordPress Advanced Notifications plugin <= 1.2.7 - Broken Access Control vulnerability YehiAdvanced Notifications Medium 4.3 2025-01-24 17:24:55 Deep Dive
CVE-2024-13253 Advanced PWA - Critical - Access bypass - SA-CONTRIB-2024-017 DrupalAdvanced PWA inc Push Notifications 中危 -2025-01-09 18:59:22 Deep Dive
CVE-2025-22357 WordPress Target Notifications plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability wpdeverTarget Notifications High 7.1 2025-01-07 10:48:37 Deep Dive
CVE-2024-11725 SMS Alert Order Notifications – WooCommerce <= 3.7.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update cozyvision1SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery High 8.8 2025-01-07 06:40:56 Deep Dive
CVE-2024-11811 Feedify – Web Push Notifications <= 2.4.2 - Reflected Cross-Site Scripting feedifyFeedify – Web Push Notifications Medium 6.1 2024-12-20 22:23:08 Deep Dive