Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 592 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-52710 WordPress File Manager Pro plugin <= 1.8.8 - Cross Site Scripting (XSS) Vulnerability Ninja TeamFile Manager Pro Medium 5.9 2025-06-20 15:03:35 Deep Dive
CVE-2025-4102 Beaver Builder Plugin (Starter Version) <= 2.9.1 - Authenticated (Administrator+) Arbitrary File Upload The Beaver Builder TeamBeaver Builder Plugin (Starter Version) High 7.2 2025-06-20 11:16:40 Deep Dive
CVE-2025-49316 WordPress WP2LEADS plugin <= 3.5.0 - Reflected Cross Site Scripting (XSS) vulnerability Saleswonder Team: TobiasWP2LEADS High 7.1 2025-06-17 15:01:24 Deep Dive
CVE-2025-49871 WordPress Noptin plugin <= 3.8.7 - Cross Site Scripting (XSS) Vulnerability Noptin Newsletter TeamNoptin Medium 5.9 2025-06-17 15:01:17 Deep Dive
CVE-2025-32308 WordPress Team Builder plugin <= 1.5.7 - Broken Access Control Vulnerability looks_awesomeTeam Builder High 7.6 2025-06-09 15:54:17 Deep Dive
CVE-2025-47487 WordPress MC Woocommerce Wishlist plugin <= 1.9.1 - Cross Site Scripting (XSS) Vulnerability Moreconvert TeamMC Woocommerce Wishlist High 7.1 2025-06-09 15:54:11 Deep Dive
CVE-2025-30927 WordPress Wordapp plugin <= 1.7.0 - Broken Access Control Vulnerability Wordapp TeamWordapp Medium 4.3 2025-06-06 12:54:20 Deep Dive
CVE-2025-49309 WordPress HT Team Member plugin <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability HT PluginsHT Team Member Medium 6.5 2025-06-06 12:53:50 Deep Dive
CVE-2025-49250 WordPress Team Showcase plugin < 25.05.13 - Arbitrary Shortcode Execution vulnerability cmoreiraTeam Showcase Medium 4.3 2025-06-06 12:53:38 Deep Dive
CVE-2025-49248 WordPress Team Showcase plugin < 25.05.13 - Broken Access Control Vulnerability cmoreiraTeam Showcase Medium 4.3 2025-06-06 12:53:37 Deep Dive
CVE-2025-5531 Staff Directory – Employee Directory for WordPress <= 4.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting emarket-designEmployee Directory – Staff & Team Directory Medium 6.4 2025-06-04 03:40:58 Deep Dive
CVE-2025-48268 WordPress Bot for Telegram on WooCommerce plugin <= 1.2.6 - Broken Access Control Vulnerability Guru TeamBot for Telegram on WooCommerce Medium 4.3 2025-05-19 14:45:24 Deep Dive
CVE-2025-48260 WordPress GDPR CCPA Compliance Support plugin <= 2.7.3 - Broken Access Control Vulnerability Ninja TeamGDPR CCPA Compliance Support Medium 4.3 2025-05-19 14:45:02 Deep Dive
CVE-2024-9236 Team Members Showcase < 4.4.2 - Editor+ Stored XSS UnknownTeam--2025-05-15 20:07:20 Deep Dive
CVE-2025-32922 WordPress WP2LEADS plugin <= 3.5.0 - Cross Site Request Forgery (CSRF) vulnerability Saleswonder Team: TobiasWP2LEADS High 7.1 2025-05-15 18:11:54 Deep Dive
CVE-2025-3521 Team Members – Best WordPress Team Plugin with Team Slider, Team Showcase & Team Builder <= 3.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting wpspeedoTeam Members Showcase Medium 6.4 2025-05-01 06:40:16 Deep Dive
CVE-2025-32686 WordPress Team Members plugin <= 3.4.4 - PHP Object Injection Vulnerability WPSpeedoTeam Members High 8.8 2025-04-17 15:46:58 Deep Dive
CVE-2025-32782 Ash Authentication email link auto-click account confirmation vulnerability team-alembicash_authentication Medium 5.3 2025-04-15 22:04:42 Deep Dive
CVE-2025-2541 WP Project Manager <= 2.6.22 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload wedevsProject Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker Medium 6.4 2025-04-11 11:11:56 Deep Dive
CVE-2025-3100 WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts <= 2.6.22 - Authenticated (Subscriber+) Stored Cross-Site Scripting via SVG File Upload wedevsProject Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker Medium 6.4 2025-04-09 04:21:20 Deep Dive