Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 30 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-3535 DSGVO Google Web Fonts GDPR <= 1.1 - Unauthenticated Arbitrary File Upload via 'fonturl' Parameter mlfactoryDSGVO Google Web Fonts GDPR Critical 9.8 2026-04-08 06:43:39 Deep Dive
CVE-2026-1800 Fonts Manager | Custom Fonts <= 1.2 - Unauthenticated SQL Injection via fmcfIdSelectedFnt parameter wisdomlogixFonts Manager | Custom Fonts High 7.5 2026-03-21 03:26:32 Deep Dive
CVE-2020-37011 Gnome Fonts Viewer 3.34.0 Heap Corruption GNOMEFonts Viewer High 7.5 2026-01-29 14:28:31 Deep Dive
CVE-2025-14351 Custom Fonts – Host Your Fonts Locally <= 2.1.16 - Missing Authorization to Unauthenticated Font Deletion brainstormforceCustom Fonts – Host Your Fonts Locally Medium 5.3 2026-01-20 03:25:17 Deep Dive
CVE-2025-12045 Orbit Fox Companion <= 3.0.2 - Authenticated (Author+) Stored Cross-Site Scripting via Post Taxonomy themeisleOrbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Medium 6.4 2025-11-04 11:19:28 Deep Dive
CVE-2025-62980 WordPress Persian Admnin Fonts plugin <= 4.1.03 - Broken Access Control vulnerability MDZPersian Admnin Fonts Medium 5.4 2025-10-27 01:34:19 Deep Dive
CVE-2025-10874 Orbit Fox < 3.0.2 - Author+ Server-Side Request Forgery UnknownOrbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More 中危 -2025-10-24 06:00:09 Deep Dive
CVE-2025-31578 WordPress Fonts Manager | Custom Fonts plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability Wisdomlogix Solutions Pvt. Ltd.Fonts Manager | Custom Fonts High 7.1 2025-04-01 20:58:14 Deep Dive
CVE-2024-13768 CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Font Assignment Deletion ashikcseCITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts Medium 4.3 2025-03-22 06:41:13 Deep Dive
CVE-2025-0807 CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Settings Update ashikcseCITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts Medium 4.3 2025-03-22 06:41:10 Deep Dive
CVE-2024-43302 WordPress Fonts plugin <= 3.7.7 - Broken Access Control vulnerability Fonts PluginFonts Medium 4.3 2024-11-01 14:17:27 Deep Dive
CVE-2024-8920 Fonto – Custom Web Fonts Manager <= 1.2.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vladolaruFonto – Custom Web Fonts Manager Medium 6.4 2024-10-17 09:32:17 Deep Dive
CVE-2022-4974 Freemius SDK <= 2.4.2 - Missing Authorization Checks dashlabsltdYASR – Yet Another Star Rating Plugin for WordPress Medium 6.3 2024-10-16 06:43:30 Deep Dive
CVE-2024-43301 WordPress Fonts plugin <= 3.7.7 - Cross Site Request Forgery (CSRF) to Stored XSSvulnerability Fonts PluginFonts High 7.1 2024-08-26 20:38:06 Deep Dive
CVE-2024-1332 Custom Fonts – Host Your Fonts Locally <= 2.1.4 - Authenticated (Author+) Stored Cross-Site Scripting brainstormforceCustom Fonts – Host Your Fonts Locally Medium 6.4 2024-05-24 06:42:18 Deep Dive
CVE-2024-33925 WordPress Embed Google Fonts plugin <= 3.1.0 - Broken Access Control vulnerability Adrian MörchenEmbed Google Fonts Medium 4.3 2024-05-03 08:22:27 Deep Dive
CVE-2024-27194 WordPress Fontific plugin <= 0.1.6 - CSRF to XSS vulnerability Andrei IvasiucFontific | Google Fonts High 7.1 2024-03-16 01:22:52 Deep Dive
CVE-2023-7167 Persian Fonts <= 1.6 - Admin+ Stored XSS UnknownPersian Fonts 中危 -2024-02-27 08:30:24 Deep Dive
CVE-2023-6600 OMGF | GDPR/DSGVO Compliant, Faster Google Fonts. Easy. <= 5.7.9 - Missing Authorization to Unauthenticated Directory Deletion and Cross-Site Scripting daanvandenberghOMGF | GDPR/DSGVO Compliant, Faster Google Fonts. Easy. High 8.6 2024-01-03 05:31:18 Deep Dive
CVE-2023-27436 WordPress Elegant Custom Fonts Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF) Louis ReingoldElegant Custom Fonts Medium 5.4 2023-11-12 23:09:45 Deep Dive