| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-32117 | WordPress Widgetize Pages Light plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability | OTWthemes | Widgetize Pages Light | High | 7.1 | 2025-04-08 16:59:34 | Deep Dive |
| CVE-2025-31445 | WordPress Pages Order plugin <= 1.1.3 - Reflected Cross Site Scripting (XSS) vulnerability | Sed Lex | Pages Order | High | 7.1 | 2025-04-01 20:58:10 | Deep Dive |
| CVE-2025-31679 | Ignition Error Pages - Critical - Cross Site Scripting - SA-CONTRIB-2025-007 | Drupal | Ignition Error Pages | 中危 | - | 2025-03-31 21:38:51 | Deep Dive |
| CVE-2025-0718 | Nested Pages < 3.2.13 - Contributor+ Stored XSS | Unknown | Nested Pages | 中危 | - | 2025-03-23 06:00:05 | Deep Dive |
| CVE-2025-1309 | UiPress lite | Effortless custom dashboards, admin themes and pages <= 3.5.04 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update | admintwentytwenty | UiPress lite | Effortless custom dashboards, admin themes and pages | High | 8.8 | 2025-03-07 07:22:24 | Deep Dive |
| CVE-2025-23563 | WordPress Explore pages plugin <= 1.01 - Reflected Cross Site Scripting (XSS) vulnerability | mbyte | Explore pages | High | 7.1 | 2025-03-03 13:30:12 | Deep Dive |
| CVE-2025-1780 | BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages <= 3.4.25 - Cross-Site Request Forgery to Limited Settings Update | themekraft | BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages | Medium | 4.3 | 2025-03-01 03:22:19 | Deep Dive |
| CVE-2024-13358 | BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages <= 3.4.24 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update | themekraft | BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages | Medium | 4.3 | 2025-03-01 03:22:19 | Deep Dive |
| CVE-2025-24989 | Microsoft Power Pages Elevation of Privilege Vulnerability | Microsoft | Microsoft Power Pages | High | 8.2 | 2025-02-19 22:18:22 | Deep Dive |
| CVE-2025-23905 | WordPress Admin Options Pages plugin <= 0.9.7 - Reflected Cross Site Scripting (XSS) vulnerability | Johannes van Poelgeest | Admin Options Pages | High | 7.1 | 2025-02-14 12:45:34 | Deep Dive |
| CVE-2024-13850 | Simple add pages or posts <= 2.0.0 - Authenticated (Administrator+) Stored Cross-Site Scripting | ramon-fincken | Simple add pages or posts | Medium | 5.5 | 2025-02-08 12:21:37 | Deep Dive |
| CVE-2025-0804 | ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages <= 2.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | clickwhale | ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages | Medium | 6.4 | 2025-01-29 03:21:24 | Deep Dive |
| CVE-2025-24579 | WordPress Nested pages plugin <= 3.2.9 - Cross Site Scripting (XSS) vulnerability | Kyle Phillips | Nested Pages | Medium | 5.9 | 2025-01-24 17:24:22 | Deep Dive |
| CVE-2025-23875 | WordPress Better Protected Pages plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerability | madeglobal | Better Protected Pages | High | 7.1 | 2025-01-16 20:07:35 | Deep Dive |
| CVE-2024-11327 | ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages <= 2.4.1 - Reflected Cross-Site Scripting | clickwhale | ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages | Medium | 6.1 | 2025-01-11 02:20:55 | Deep Dive |
| CVE-2024-13302 | Pages Restriction Access - Critical - Access bypass - SA-CONTRIB-2024-068 | Drupal | Pages Restriction Access | 中危 | - | 2025-01-09 20:24:05 | Deep Dive |
| CVE-2025-22313 | WordPress Widgetize Pages Light plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability | OTWthemes | Widgetize Pages Light | High | 7.1 | 2025-01-09 15:39:32 | Deep Dive |
| CVE-2025-22517 | WordPress List Pages at Depth plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability | Ben Huson | List Pages at Depth | Medium | 6.5 | 2025-01-07 14:57:35 | Deep Dive |
| CVE-2024-11282 | Passster – Password Protect Pages and Content <= 4.2.10 - Unauthenticated Content Restriction Bypass to Sensitive Information Exposure | wpchill | Passster – Password Protect Pages and Content | Medium | 5.3 | 2025-01-07 06:40:56 | Deep Dive |
| CVE-2024-12288 | Simple add pages or posts <= 2.0.0 - Cross-Site Request Forgery to Reflected Cross-Site Scripting | ramon-fincken | Simple add pages or posts | Medium | 6.1 | 2025-01-07 04:21:59 | Deep Dive |