Skip to main content
Abstract art
Abstract art
Abstract art
Abstract art

For individuals

7 Feb 2025
Riasztás

NA - CVE-2025-25154 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in scweber Custom Comment Notifications allows Stored XSS. This issue affects Custom Comment Notifications: from n/a through 1.0.8.
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25155 - Improper Limitation of a Pathname to a...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in efreja Music Sheet Viewer allows Path Traversal. This issue affects Music Sheet Viewer:...
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25156 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Stanko Metodiev Quote Comments allows Stored XSS. This issue affects Quote Comments: from n/a through 2.2.1.
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25159 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in robert_kolatzek WP doodlez allows Stored XSS. This issue affects WP doodlez: from n/a...
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25160 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Mark Barnes Style Tweaker allows Stored XSS. This issue affects Style Tweaker: from n/a through 0.11.
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25163 - Improper Limitation of a Pathname to a...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Zach Swetz Plugin A/B Image Optimizer allows Path Traversal. This issue affects Plugin A/B...
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25166 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in gabrieldarezzo InLocation allows Stored XSS. This issue affects InLocation: from n/a through 1.8.
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25167 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in blackandwhitedigital BookPress – For Book Authors allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects BookPress – For...
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25168 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in blackandwhitedigital BookPress – For Book Authors allows Cross-Site Scripting (XSS). This issue affects BookPress – For Book Authors: from n/a...
security-database.com
Read more
7 Feb 2025
Riasztás

NA - CVE-2025-25069 - A Cross-Protocol Scripting vulnerability is...

A Cross-Protocol Scripting vulnerability is found in Apache Kvrocks. Since Kvrocks didn't detect if "Host:" or "POST" appears in RESP requests, a valid HTTP request can also be sent to...
security-database.com
Read more
Language
Type