Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 2564 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-47576 WordPress Bimber - Viral Magazine WordPress Theme theme <= 9.2.5 - Local File Inclusion vulnerability BringthepixelBimber - Viral Magazine WordPress Theme High 8.8 2025-05-19 16:23:39 Deep Dive
CVE-2025-3527 EventON - WordPress Virtual Event Calendar Plugin <= 4.9.6 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting EventONEventON (Pro) - WordPress Virtual Event Calendar Plugin Medium 6.4 2025-05-17 11:17:16 Deep Dive
CVE-2025-3812 WPBot Pro Wordpress Chatbot <= 13.6.2 - Authenticated (Subscriber+) Arbitrary File Deletion QuantumCloudWPBot Pro Wordpress Chatbot High 8.1 2025-05-17 05:30:34 Deep Dive
CVE-2025-31640 WordPress Magic Responsive Slider and Carousel WordPress plugin < 1.6 - SQL Injection Vulnerability LambertGroupMagic Responsive Slider and Carousel WordPress High 8.5 2025-05-16 15:45:38 Deep Dive
CVE-2025-31915 WordPress Pixel Form BuilderPlugin & Autoresponder plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) vulnerability kamleshyadavPixel WordPress Form BuilderPlugin & Autoresponder Medium 5.4 2025-05-16 15:45:37 Deep Dive
CVE-2025-31922 WordPress CSS3 Accordions for WordPress plugin <= 3.0 - CSRF to Stored XSS vulnerability QuanticaLabsCSS3 Accordions for WordPress High 7.1 2025-05-16 15:45:36 Deep Dive
CVE-2025-31923 WordPress CSS3 Accordions for WordPress plugin <= 3.0 - Broken Access Control Vulnerability QuanticaLabsCSS3 Accordions for WordPress Medium 5.4 2025-05-16 15:45:35 Deep Dive
CVE-2025-32299 WordPress QuickCal plugin <= 1.0.15 - Sensitive Data Exposure Vulnerability ThemovationQuickCal - Appointment Booking Calendar for WordPress Medium 4.3 2025-05-16 15:45:30 Deep Dive
CVE-2025-32306 WordPress Radio Player Shoutcast & Icecast theme <= 4.4.6 - SQL Injection Vulnerability LambertGroupRadio Player Shoutcast & Icecast WordPress Plugin High 8.5 2025-05-16 15:45:29 Deep Dive
CVE-2025-32310 WordPress QuickCal plugin <= 1.0.15 - CSRF to Privilege Escalation vulnerability ThemeMoveQuickCal - Appointment Booking Calendar for WordPress High 8.8 2025-05-16 15:45:28 Deep Dive
CVE-2025-47534 WordPress Wordpress Auto Spinner plugin <= 3.25.0 - Broken Access Control Vulnerability ValvePressWordpress Auto Spinner Medium 4.3 2025-05-16 15:45:22 Deep Dive
CVE-2025-47556 WordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Broken Access Control Vulnerability QuanticaLabsCSS3 Compare Pricing Tables for WordPress Medium 5.4 2025-05-16 15:45:21 Deep Dive
CVE-2025-3201 Kali Forms < 2.4.3 - Contributor+ Stored XSS UnknownContact Form builder with drag & drop for WordPress--2025-05-16 06:00:04 Deep Dive
CVE-2024-0852 coreActivity < 1.8.1 - Unauthenticated Stored XSS UnknowncoreActivity: Activity Logging for WordPress--2025-05-15 20:09:32 Deep Dive
CVE-2023-6783 WolfNet IDX for WordPress <= 1.19.1 - Admin+ Stored XSS UnknownWolfNet IDX for WordPress--2025-05-15 20:09:19 Deep Dive
CVE-2025-0329 AI ChatBot for WordPress – WPBot < 6.2.4 - Admin+ Stored XSS UnknownAI ChatBot for WordPress--2025-05-15 20:07:25 Deep Dive
CVE-2024-8620 MapPress Maps for WordPress < 2.93 - Admin+ Stored XSS via Map Settings UnknownMapPress Maps for WordPress--2025-05-15 20:07:17 Deep Dive
CVE-2024-6665 kbucket < 4.1.6 - Admin+ Stored XSS UnknownKBucket: Your Curated Content in WordPress--2025-05-15 20:07:08 Deep Dive
CVE-2024-6667 kbucket < 4.1.5 - Reflected XSS UnknownKBucket: Your Curated Content in WordPress--2025-05-15 20:07:08 Deep Dive
CVE-2024-10631 Countdown Timer <= 1.0.5 - Contributor+ Stored XSS UnknownCountdown Timer for WordPress Block Editor--2025-05-15 20:06:45 Deep Dive