Skip to main content

Alerts

9 Jun 2025

NA - CVE-2025-46178 - Cross-Site Scripting (XSS) vulnerability exists...

Cross-Site Scripting (XSS) vulnerability exists in askquery.php via the eid parameter in the CloudClassroom PHP Project. This allows remote attackers to inject arbitrary JavaScript in the context...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47463 - Missing Authorization vulnerability in Fahad...

Missing Authorization vulnerability in Fahad Mahmood Stock Locations for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Stock Locations for...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47477 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in revmakx Backup and Staging by WP Time Capsule allows Reflected XSS. This issue...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47487 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in moreconvert MC Woocommerce Wishlist allows Reflected XSS. This issue affects MC...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47511 - Improper Limitation of a Pathname to a...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in nanbu Welcart e-Commerce allows Path Traversal. This issue affects Welcart e-Commerce: from...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47527 - Missing Authorization vulnerability in Icegram...

Missing Authorization vulnerability in Icegram Icegram Collect – Easy Form, Lead Collection and Subscription plugin allows Exploiting Incorrectly Configured Access Control Security Levels. This...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47561 - Incorrect Privilege Assignment vulnerability in...

Incorrect Privilege Assignment vulnerability in RomanCode MapSVG allows Privilege Escalation. This issue affects MapSVG: from n/a through 8.5.34.
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47598 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in click5 History Log by click5 allows Stored XSS. This issue affects History Log by...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47608 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in sonalsinha21 Recover abandoned cart for WooCommerce allows SQL Injection. This issue...
security-database.com
Read more
9 Jun 2025

NA - CVE-2025-47651 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Infility Infility Global allows SQL Injection. This issue affects Infility Global:...
security-database.com
Read more
Language