Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 199 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-7369 Shortcodes Ultimate <= 7.4.2 - Cross-Site Request Forgery to Arbitrary Shortcode Execution gn_themesWP Shortcodes Plugin — Shortcodes Ultimate Medium 6.1 2025-07-21 07:23:25 Deep Dive
CVE-2025-7354 WP Shortcodes Plugin — Shortcodes Ultimate <= 7.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Plugin Shortcodes gn_themesWP Shortcodes Plugin — Shortcodes Ultimate Medium 6.4 2025-07-21 07:23:25 Deep Dive
CVE-2025-7648 Ruven Themes: Shortcodes <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting ruven-themesRuven Themes: Shortcodes Medium 6.4 2025-07-18 04:23:00 Deep Dive
CVE-2025-5567 Shortcodes Ultimate <= 7.4.0 - Authenticted (Contributor+) Stored Cross-Site Scripting via 'data-url' Attribute gn_themesWP Shortcodes Plugin — Shortcodes Ultimate Medium 6.4 2025-07-04 02:22:33 Deep Dive
CVE-2024-5647 Multiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via Magnific Popups JavaScript Library blossomthemesBlossomThemes Social Feed Medium 6.4 2025-07-03 09:22:19 Deep Dive
CVE-2025-49855 WordPress Meks Flexible Shortcodes plugin <= 1.3.7 - Cross Site Scripting (XSS) Vulnerability MeksMeks Flexible Shortcodes Medium 6.5 2025-06-17 15:01:22 Deep Dive
CVE-2025-49858 WordPress Arconix Shortcodes plugin <= 2.1.17 - Cross Site Scripting (XSS) Vulnerability tychesoftwaresArconix Shortcodes Medium 6.5 2025-06-17 15:01:20 Deep Dive
CVE-2025-49244 WordPress Shortcodes Ultimate plugin <= 7.3.5 - Cross Site Scripting (XSS) Vulnerability VovaShortcodes Ultimate Medium 6.5 2025-06-06 12:53:36 Deep Dive
CVE-2025-47673 WordPress Arconix Shortcodes plugin <= 2.1.16 - Reflected Cross Site Scripting (XSS) vulnerability tychesoftwaresArconix Shortcodes High 7.1 2025-05-23 12:43:20 Deep Dive
CVE-2025-46543 WordPress Enhanced Paypal Shortcodes plugin <= 0.5a - Cross Site Scripting (XSS) vulnerability CharlyLeethamEnhanced Paypal Shortcodes Medium 6.5 2025-05-19 17:04:06 Deep Dive
CVE-2025-47621 WordPress Meks Flexible Shortcodes plugin <= 1.3.6 - Cross Site Scripting (XSS) Vulnerability MeksMeks Flexible Shortcodes Medium 6.5 2025-05-07 14:20:34 Deep Dive
CVE-2025-24621 WordPress Arconix Shortcodes plugin <= 2.1.15 - Reflected Cross Site Scripting (XSS) vulnerability tychesoftwaresArconix Shortcodes High 7.1 2025-04-17 15:48:17 Deep Dive
CVE-2025-39528 WordPress Rescue Shortcodes plugin <= 3.1 - Cross Site Scripting (XSS) vulnerability Rescue ThemesRescue Shortcodes Medium 6.5 2025-04-16 12:45:48 Deep Dive
CVE-2025-39574 WordPress Uix Shortcodes plugin <= 2.0.4 - Cross Site Scripting (XSS) Vulnerability UIUX LabUix Shortcodes Medium 6.5 2025-04-16 12:44:28 Deep Dive
CVE-2025-39581 WordPress Themify Shortcodes plugin <= 2.1.3 - Cross Site Scripting (XSS) Vulnerability themifymeThemify Shortcodes Medium 6.5 2025-04-16 12:44:24 Deep Dive
CVE-2025-2809 azurecurve Shortcodes in Comments <= 2.0.2 - Unauthenticated Arbitrary Shortcode Execution azurecurveazurecurve Shortcodes in Comments High 7.3 2025-04-10 07:02:40 Deep Dive
CVE-2025-31754 WordPress DobsonDev Shortcodes plugin <= 2.1.12 - Stored Cross Site Scripting (XSS) vulnerability DobsonDevDobsonDev Shortcodes Medium 6.5 2025-04-01 14:51:12 Deep Dive
CVE-2024-13557 Shortcodes by United Themes <= 5.1.6 - Unauthenticated Arbitrary Shortcode Execution United ThemesShortcodes by United Themes Medium 6.5 2025-03-29 07:03:32 Deep Dive
CVE-2025-30597 WordPress IG Shortcodes plugin <= 3.1 Cross Site Scripting (XSS) Vulnerability iograficaIG Shortcodes Medium 6.5 2025-03-24 13:47:19 Deep Dive
CVE-2025-0370 WP Shortcodes Plugin — Shortcodes Ultimate <= 7.3.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via src Parameter gn_themesWP Shortcodes Plugin — Shortcodes Ultimate Medium 6.4 2025-03-04 09:22:37 Deep Dive