Vulnerability List

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2025-31636	WordPress WP Post Modules for Elementor plugin <= 2.5.0 - Reflected Cross Site Scripting (XSS) vulnerability	SaurabhSharma	WP Post Modules for Elementor	High	7.1	2025-05-23 12:44:04	Deep Dive
CVE-2025-4133	Blog2Social: Social Media Auto Post & Scheduler < 8.4.0 - Contributor+ Stored XSS	Unknown	Blog2Social: Social Media Auto Post & Scheduler	-	-	2025-05-22 06:00:09	Deep Dive
CVE-2025-4391	Echo RSS Feed Post Generator <= 5.4.8.1 - Unauthenticated Arbitrary File Upload	CodeRevolution	Echo RSS Feed Post Generator	Critical	9.8	2025-05-17 05:30:34	Deep Dive
CVE-2025-4389	Crawlomatic Multipage Scraper Post Generator <= 2.6.8.1 - Unauthenticated Arbitrary File Upload	CodeRevolution	Crawlomatic Multipage Scraper Post Generator	Critical	9.8	2025-05-17 05:30:33	Deep Dive
CVE-2024-3996	Post Grid, Post Carousel, & List Category Posts < 2.4.28 - Editor+ Stored XSS	Unknown	Smart Post Show	-	-	2025-05-15 20:09:45	Deep Dive
CVE-2024-9645	Post Grid and Gutenberg Blocks < 2.2.93 - Contributor+ Stored XSS	Unknown	Post Grid, Posts Slider, Posts Carousel, Post Filter, Post Masonry	-	-	2025-05-15 20:07:22	Deep Dive
CVE-2024-8187	Smart Post Show <= 3.0.0 - Editor+ Stored XSS	Unknown	Smart Post Show	-	-	2025-05-15 20:07:14	Deep Dive
CVE-2024-6159	Push Notification for Post and BuddyPress <=1.93 - Multiple Unauthenticated SQLi	Unknown	Push Notification for Post and BuddyPress	-	-	2025-05-15 20:07:07	Deep Dive
CVE-2024-12735	Advance Post Prefix <= 1.1.1 - Admin+ SQL Injection	Unknown	Advance Post Prefix	-	-	2025-05-15 20:06:56	Deep Dive
CVE-2024-12734	Advance Post Prefix <= 1.1.1 - Reflected XSS	Unknown	Advance Post Prefix	-	-	2025-05-15 20:06:55	Deep Dive
CVE-2024-10143	MB Custom Post Types & Custom Taxonomies < 2.7.7 - Admin+ Stored XSS	Unknown	MB Custom Post Types & Custom Taxonomies	-	-	2025-05-15 20:06:41	Deep Dive
CVE-2025-47615	WordPress Amazon Product in a Post plugin <= 5.2.2 - Cross Site Scripting (XSS) Vulnerability	flowdee	Amazon Product in a Post	Medium	5.9	2025-05-07 14:20:31	Deep Dive
CVE-2025-4055	Multiple Post Type Order <= 1.10.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mpto Shortcode	josj404	Multiple Post Type Order	Medium	6.4	2025-05-07 01:43:09	Deep Dive
CVE-2025-2011	Slider & Popup Builder by Depicter <= 3.6.1 - Unauthenticated SQL Injection via 's' Parameter	averta	Depicter — Popup & Slider Builder	High	7.5	2025-05-06 09:21:49	Deep Dive
CVE-2025-46471	WordPress WP Custom Post Popup plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability	gnanavelshenll	WP Custom Post Popup	Medium	6.5	2025-04-24 16:09:09	Deep Dive
CVE-2025-46536	WordPress Carousel-of-post-images plugin <= 1.07 - Cross Site Scripting (XSS) Vulnerability	RichardHarrison	Carousel-of-post-images	Medium	6.5	2025-04-24 16:09:02	Deep Dive
CVE-2025-46524	WordPress WP Filter Post Category plugin <= 2.1.4 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability	stesvis	WP Filter Post Category	High	7.1	2025-04-24 16:08:59	Deep Dive
CVE-2025-46480	WordPress Nepali Post Date plugin <= 5.1.1 - Cross Site Scripting (XSS) Vulnerability	Padam Shankhadev	Nepali Post Date	Medium	6.5	2025-04-24 16:08:49	Deep Dive
CVE-2025-46228	WordPress Event post plugin <= 5.9.11 - Cross Site Scripting (XSS) Vulnerability	Bastien Ho	Event post	Medium	6.5	2025-04-22 09:53:21	Deep Dive
CVE-2025-46225	WordPress Post in page for Elementor plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability	Michael	Post in page for Elementor	Medium	6.5	2025-04-22 09:53:19	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List