| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-13839 | Company Directory <= 4.3 - Reflected Cross-Site Scripting via add_query_arg Function | richardgabriel | Staff Directory Plugin: Company Directory | Medium | 6.1 | 2025-03-05 09:21:48 | Deep Dive |
| CVE-2025-25165 | WordPress Staff Directory Plugin: Company Directory Plugin <= 4.3 - Cross Site Scripting (XSS) vulnerability | richardgabriel | Staff Directory Plugin: Company Directory | High | 7.1 | 2025-03-03 13:30:27 | Deep Dive |
| CVE-2023-5745 | Reusable Text Blocks <= 1.5.3 - Authenticated (Author+) Stored Cross-Site Scripting via Shortcode | richardgabriel | Reusable Text Blocks | Medium | 5.5 | 2023-10-24 13:52:58 | Deep Dive |
| CVE-2023-4944 | Awesome Weather Widget <= 3.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | richardgabriel | Awesome Weather Widget | Medium | 6.4 | 2023-09-14 02:29:51 | Deep Dive |
| CVE-2021-4397 | Staff Directory Plugin <= 3.6 - Cross-Site Request Forgery Bypass | richardgabriel | Staff Directory Plugin: Company Directory | Medium | 4.3 | 2023-07-01 05:33:26 | Deep Dive |
| CVE-2021-4394 | Locations <= 3.2.1 - Cross-Site Request Forgery Bypass | richardgabriel | Locations | Medium | 4.3 | 2023-07-01 04:26:51 | Deep Dive |