Skip to main content

Alerts

16 Jul 2025

NA - CVE-2025-54047 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in QuanticaLabs Cost Calculator allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Cost Calculator: from n/a through 7.4.
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-54050 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CyberChimps Responsive Addons for Elementor allows Stored XSS. This issue affects...
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-54051 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bPlugins LightBox Block allows Stored XSS. This issue affects LightBox Block: from...
security-database.com
Read more
16 Jul 2025

NA - CVE-2024-9408 - In Eclipse GlassFish since version 6.2.5 it is...

In Eclipse GlassFish since version 6.2.5 it is possible to perform a Server Side Request Forgery attack in specific endpoints.
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-24759 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CMSJunkie - WordPress Business Directory Plugins WP-BusinessDirectory allows Blind...
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-24777 - Deserialization of Untrusted Data vulnerability...

Deserialization of Untrusted Data vulnerability in awethemes Hillter allows Object Injection. This issue affects Hillter: from n/a through 3.0.7.
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-24779 - Deserialization of Untrusted Data vulnerability...

Deserialization of Untrusted Data vulnerability in NooTheme Yogi allows Object Injection. This issue affects Yogi: from n/a through 2.9.0.
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-28955 - Improper Limitation of a Pathname to a...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in FWDesign Easy Video Player Wordpress & WooCommerce allows Path Traversal. This issue...
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-28959 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Md Yeasin Ul Haider URL Shortener allows SQL Injection. This issue affects URL...
security-database.com
Read more
16 Jul 2025

NA - CVE-2025-28961 - Deserialization of Untrusted Data vulnerability...

Deserialization of Untrusted Data vulnerability in Md Yeasin Ul Haider URL Shortener allows Object Injection. This issue affects URL Shortener: from n/a through 3.0.7.
security-database.com
Read more
Language