Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 326 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-11030 Tutorials-Website Employee Management System HTTP Request all-applied-leave.php improper authorization Tutorials-WebsiteEmployee Management System High 7.3 2025-09-26 17:02:06 Deep Dive
CVE-2025-6396 XSS in Webbeyaz's web site Webbeyaz Website DesignWebsite Software Medium 6.1 2025-09-26 14:12:17 Deep Dive
CVE-2025-58666 WordPress Website Chat Button: Kommo integration Plugin <= 1.3.1 - Broken Access Control Vulnerability KommoWebsite Chat Button: Kommo integration Medium 4.3 2025-09-22 18:22:58 Deep Dive
CVE-2025-58677 WordPress ShrinkTheWeb (STW) Website Previews Plugin <= 2.8.5 - Cross Site Request Forgery (CSRF) Vulnerability puravida1976ShrinkTheWeb (STW) Website Previews High 7.1 2025-09-22 18:22:51 Deep Dive
CVE-2025-10793 code-projects E-Commerce Website admin_account_delete.php sql injection code-projectsE-Commerce Website High 7.3 2025-09-22 10:02:07 Deep Dive
CVE-2025-10616 itsourcecode E-Commerce Website users.php unrestricted upload itsourcecodeE-Commerce Website Medium 6.3 2025-09-17 20:32:07 Deep Dive
CVE-2025-10615 itsourcecode E-Commerce Website products.php unrestricted upload itsourcecodeE-Commerce Website Medium 6.3 2025-09-17 20:02:07 Deep Dive
CVE-2025-9378 Vayu Blocks <= 1.3.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Block Attributes themehunkVayu Blocks – Website Builder for the Block Editor Medium 6.4 2025-09-03 06:43:10 Deep Dive
CVE-2025-9237 CodeAstro Ecommerce Website Edit Your Account my_account.php cross site scripting CodeAstroEcommerce Website Low 3.5 2025-08-20 17:32:09 Deep Dive
CVE-2025-55709 WordPress Visual Composer Website Builder Plugin < 45.15.0 - Cross Site Scripting (XSS) Vulnerability Visual ComposerVisual Composer Website Builder Medium 6.5 2025-08-14 18:21:31 Deep Dive
CVE-2025-8081 Elementor <= 3.30.2 - Authenticated (Administrator+) Arbitrary File Read via Image Import elemntorElementor Website Builder – more than just a page builder Medium 4.9 2025-08-12 05:27:09 Deep Dive
CVE-2025-7726 The7 <= 12.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via title and data-dt-img-description Attributes Dream-ThemeThe7 — Website and eCommerce Builder for WordPress Medium 6.4 2025-08-09 13:45:05 Deep Dive
CVE-2025-4566 Elementor <= 3.30.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Text Path Widget elemntorElementor Website Builder – more than just a page builder Medium 6.4 2025-07-29 04:23:46 Deep Dive
CVE-2025-3075 Elementor <= 3.29.0 - Authenticated (Contributor+) Stored Cross-Site Scripting elemntorElementor Website Builder – more than just a page builder Medium 6.4 2025-07-29 04:23:45 Deep Dive
CVE-2015-10137 Website Contact Form With File Upload <= 1.3.4 - Arbitrary File Upload N-MediaWebsite Contact Form With File Upload Critical 9.8 2025-07-22 01:44:29 Deep Dive
CVE-2025-6873 SourceCodester Simple Company Website Users.php unrestricted upload SourceCodesterSimple Company Website Medium 4.7 2025-06-29 21:32:07 Deep Dive
CVE-2025-6872 SourceCodester Simple Company Website SystemSettings.php unrestricted upload SourceCodesterSimple Company Website Medium 4.7 2025-06-29 21:02:06 Deep Dive
CVE-2025-6871 SourceCodester Simple Company Website Login.php sql injection SourceCodesterSimple Company Website High 7.3 2025-06-29 20:32:06 Deep Dive
CVE-2025-6870 SourceCodester Simple Company Website Content.php unrestricted upload SourceCodesterSimple Company Website Medium 4.7 2025-06-29 20:02:07 Deep Dive
CVE-2025-6869 SourceCodester Simple Company Website manage.php sql injection SourceCodesterSimple Company Website Medium 4.7 2025-06-29 19:32:06 Deep Dive