Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 258 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-66122 WordPress Stylish Price List plugin <= 7.2.2 - Broken Access Control vulnerability DesignStylish Price List Medium 5.3 2025-12-16 08:12:53 Deep Dive
CVE-2025-64248 WordPress Request a Quote plugin <= 2.5.3 - Broken Access Control vulnerability emarket-designRequest a Quote--2025-12-16 08:12:49 Deep Dive
CVE-2025-14050 Design Import/Export <= 2.2 - Authenticated (Administrator+) SQL Injection via XML File Import uxlDesign Import/Export – Styles, Templates, Template Parts and Patterns Medium 4.9 2025-12-13 03:20:27 Deep Dive
CVE-2025-13403 Employee Spotlight – Team Member Showcase & Meet the Team Plugin <= 5.1.3 - Missing Authorization to Authenticated (Subscriber+) Tracking Opt-In/Opt-Out Modification emarket-designEmployee Spotlight – Team Member Showcase & Meet the Team Plugin Medium 4.3 2025-12-13 03:20:24 Deep Dive
CVE-2025-66095 WordPress KiviCare plugin <= 3.6.13 - SQL Injection vulnerability Iqonic DesignKiviCare High 8.5 2025-11-21 12:30:00 Deep Dive
CVE-2025-66091 WordPress Stylish Cost Calculator plugin <= 8.1.5 - Cross Site Scripting (XSS) vulnerability DesignStylish Cost Calculator 中危 -2025-11-21 12:29:59 Deep Dive
CVE-2025-13289 1000projects Design & Development of Student Database Management System SubjectDetails.php sql injection 1000projectsDesign & Development of Student Database Management System Medium 6.3 2025-11-17 16:02:05 Deep Dive
CVE-2025-12090 Employee Spotlight – Team Member Showcase & Meet the Team Plugin <= 5.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting emarket-designEmployee Spotlight – Team Member Showcase & Meet the Team Plugin Medium 6.4 2025-11-01 05:40:23 Deep Dive
CVE-2025-12083 CivicTheme Design System - Moderately critical - Cross-site Scripting - SA-CONTRIB-2025-113 DrupalCivicTheme Design System--2025-10-29 23:14:34 Deep Dive
CVE-2025-12082 CivicTheme Design System - Moderately critical - Information disclosure - SA-CONTRIB-2025-112 DrupalCivicTheme Design System--2025-10-29 23:14:19 Deep Dive
CVE-2025-62899 WordPress Photospace Responsive plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability THRIVE - Web Design Gold CoastPhotospace Responsive Medium 5.9 2025-10-27 01:33:50 Deep Dive
CVE-2025-11872 Material Design Iconic Font Integration <= 2 - Authenticated (Contributor+) Stored Cross-Site Scripting mcostales84Material Design Iconic Font Integration Medium 6.4 2025-10-22 08:27:04 Deep Dive
CVE-2025-11151 Information Disclosure in Beyaz Computer's CityPLus Beyaz Bilgisayar Software Design Industry and Trade Ltd. Co.CityPLus High 8.2 2025-10-21 13:15:40 Deep Dive
CVE-2025-9372 Ultimate Multi Design Video Carousel <= 1.4 - Authenticated (Editor+) Stored Cross-Site Scripting gbsdeveloperUltimate Multi Design Video Carousel Medium 5.5 2025-10-03 11:17:18 Deep Dive
CVE-2025-6034 Out of Bounds Read in DefaultFontOptions() in NI Circuit Design Suite NICircuit Design Suite High 7.8 2025-09-30 16:07:22 Deep Dive
CVE-2025-6033 Memory Corruption issue in XML_Serialize() in NI Circuit Design Suite NICircuit Design Suite High 7.8 2025-09-30 16:05:53 Deep Dive
CVE-2025-6396 XSS in Webbeyaz's web site Webbeyaz Website DesignWebsite Software Medium 6.1 2025-09-26 14:12:17 Deep Dive
CVE-2025-60157 WordPress WP Ticket Customer Service Software & Support Ticket System Plugin <= 6.0.2 - Cross Site Scripting (XSS) Vulnerability emarket-designWP Ticket Customer Service Software & Support Ticket System Medium 6.5 2025-09-26 08:31:57 Deep Dive
CVE-2025-58915 WordPress Request a Quote plugin <= 2.5.0 - Cross Site Scripting (XSS) vulnerability emarket-designRequest a Quote Medium 6.5 2025-09-23 02:08:41 Deep Dive
CVE-2025-9969 Reflected XSS in Vizly Web Design's Real Estate Packages Vizly Web DesignReal Estate Packages High 7.1 2025-09-19 11:26:08 Deep Dive