For providers | HunCERT group

3 Feb 2025

Riasztás

NA - CVE-2025-22694 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in theDotstore Hide Shipping Method For WooCommerce. This issue affects Hide Shipping Method For WooCommerce: from n/a through 1.5.0.

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-22695 - Authorization Bypass Through User-Controlled...

Authorization Bypass Through User-Controlled Key vulnerability in NirWp Team Nirweb support. This issue affects Nirweb support: from n/a through 3.0.3.

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-22701 - Server-Side Request Forgery (SSRF)...

Server-Side Request Forgery (SSRF) vulnerability in NotFound Traveler Layout Essential For Elementor. This issue affects Traveler Layout Essential For Elementor: from n/a through 1.0.8.

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-22703 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in manuelvicedo Forge – Front-End Page Builder allows Stored XSS. This issue affects Forge – Front-End Page Builder: from n/a through 1.4.6.

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-22704 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in Abinav Thakuri WordPress Signature allows Cross Site Request Forgery. This issue affects WordPress Signature: from n/a through 0.1.

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-22775 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in idIA Tech Catalog Importer, Scraper & Crawler allows Reflected XSS. This issue...

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-23491 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in vikashsrivastava1111989 VSTEMPLATE Creator allows Reflected XSS. This issue affects...

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-23527 - Missing Authorization vulnerability in Hemnath...

Missing Authorization vulnerability in Hemnath Mouli WC Wallet allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects WC Wallet: from n/a through 2.2.0.

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-23561 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound MLL Audio Player MP3 Ajax allows Stored XSS. This issue affects MLL Audio...

security-database.com

3 Feb 2025

Riasztás

NA - CVE-2025-23581 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Digital Zoom Studio Demo User DZS allows Stored XSS. This issue affects Demo User...

security-database.com

Phone:	+36 1 279 6222 9am to 4pm
E-mail:	@email
Address:	H-1111 Budapest, Kende u. 13-17.