| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-64367 | WordPress Groundhogg plugin <= 4.2.6 - Cross Site Scripting (XSS) vulnerability | Adrian Tobey | Groundhogg | 中危 | - | 2025-10-31 11:42:40 | Deep Dive |
| CVE-2025-54053 | WordPress Groundhogg plugin <= 4.2.2 - PHP Object Injection vulnerability | Adrian Tobey | Groundhogg | Medium | 6.6 | 2025-08-20 08:02:55 | Deep Dive |
| CVE-2025-48300 | WordPress Groundhogg plugin <= 4.2.1 - Arbitrary File Upload vulnerability | Adrian Tobey | Groundhogg | Critical | 9.1 | 2025-07-16 11:28:02 | Deep Dive |
| CVE-2025-47654 | WordPress FormLift for Infusionsoft Web Forms plugin <= 7.5.20 - Reflected Cross Site Scripting (XSS) vulnerability | Adrian Tobey | FormLift for Infusionsoft Web Forms | High | 7.1 | 2025-06-27 11:52:33 | Deep Dive |
| CVE-2025-31015 | WordPress SMTP Service, Email Delivery Solved! — MailHawk plugin <= 1.3.1 - Local File Inclusion Vulnerability | Adrian Tobey | WordPress SMTP Service, Email Delivery Solved! — MailHawk | High | 7.5 | 2025-04-11 08:42:49 | Deep Dive |
| CVE-2025-31434 | WordPress FormLift for Infusionsoft Web Forms plugin <= 7.5.19 - Cross Site Scripting (XSS) Vulnerability | Adrian Tobey | FormLift for Infusionsoft Web Forms | Medium | 6.5 | 2025-03-28 11:54:21 | Deep Dive |
| CVE-2024-56289 | WordPress Groundhogg plugin <= 3.7.3.3 - Reflected Cross Site Scripting (XSS) vulnerability | Adrian Tobey | Groundhogg | High | 7.1 | 2025-01-07 10:49:15 | Deep Dive |
| CVE-2024-37235 | WordPress Groundhogg plugin <= 3.4.2.3 - Cross Site Request Forgery (CSRF) vulnerability | Adrian Tobey | Groundhogg | Medium | 4.3 | 2025-01-02 12:00:42 | Deep Dive |
| CVE-2024-38773 | WordPress formlift plugin <= 7.5.17 - Unauthenticated Blind SQL Injection vulnerability | Adrian Tobey | FormLift for Infusionsoft Web Forms | Critical | 9.3 | 2024-07-22 10:07:54 | Deep Dive |