Skip to main content

Alerts

27 Jun 2025

NA - CVE-2025-28993 - Improper Control of Generation of Code...

Improper Control of Generation of Code ('Code Injection') vulnerability in Jose Content No Cache allows Code Injection. This issue affects Content No Cache: from n/a through 0.1.3.
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-28998 - Improper Control of Filename for...

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in serpednet SERPed.net allows PHP Local File Inclusion. This issue...
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-30972 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in iamapinan Woocommerce Line Notify allows Stored XSS. This issue affects Woocommerce...
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-30992 - Improper Control of Filename for...

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in thembay Puca allows PHP Local File Inclusion. This issue affects...
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-31067 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themeton Seven Stars allows Stored XSS. This issue affects Seven Stars: from n/a...
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-31428 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in BuddhaThemes HYDRO allows Reflected XSS. This issue affects HYDRO: from n/a through 2.8.
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-32281 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in FocuxTheme WPKit For Elementor allows Privilege Escalation. This issue affects WPKit For Elementor: from n/a through 1.1.0.
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-32298 - Improper Control of Filename for...

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Case-Themes CTUsers allows PHP Local File Inclusion. This issue...
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-39474 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ThemeMove Amely allows SQL Injection. This issue affects Amely: from n/a through 3.1.4.
security-database.com
Read more
27 Jun 2025

NA - CVE-2025-39478 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in smartiolabs Smart Notification allows Reflected XSS. This issue affects Smart...
security-database.com
Read more
Language