Skip to main content

Alerts

6 Jun 2025

NA - CVE-2025-28996 - Missing Authorization vulnerability in Thad...

Missing Authorization vulnerability in Thad Allender GPP Slideshow allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GPP Slideshow: from n/a through 1.3.5.
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-28997 - Missing Authorization vulnerability in EXEIdeas...

Missing Authorization vulnerability in EXEIdeas International WP AutoKeyword allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP AutoKeyword: from n/a...
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-29003 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mva7 The Holiday Calendar allows Stored XSS. This issue affects The Holiday Calendar:...
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-29005 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in weblizar HR Management Lite allows Cross Site Request Forgery. This issue affects HR Management Lite: from n/a through 3.3.
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-29006 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in centangle Direct Checkout for WooCommerce Lite allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Direct Checkout for...
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-29008 - Server-Side Request Forgery (SSRF)...

Server-Side Request Forgery (SSRF) vulnerability in ShawonPro SocialMark allows Server Side Request Forgery. This issue affects SocialMark: from n/a through 2.0.7.
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-29010 - Missing Authorization vulnerability in eleopard...

Missing Authorization vulnerability in eleopard Behance Portfolio Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Behance Portfolio Manager: from...
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-29011 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CHR Designer YouTube Simple Gallery allows Stored XSS. This issue affects YouTube...
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-29013 - Missing Authorization vulnerability in faaiq...

Missing Authorization vulnerability in faaiq Custom Category/Post Type Post order allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Custom Category/Post...
security-database.com
Read more
6 Jun 2025

NA - CVE-2025-30624 - Missing Authorization vulnerability in WordLift...

Missing Authorization vulnerability in WordLift WordLift allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WordLift: from n/a through 3.54.4.
security-database.com
Read more
Language