For providers | HunCERT group

27 Mar 2025

Riasztás

NA - CVE-2025-30765 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPPOOL FlexStock allows Blind SQL Injection. This issue affects FlexStock: from n/a...

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30766 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HappyMonster Happy Addons for Elementor allows DOM-Based XSS. This issue affects...

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30767 - Missing Authorization vulnerability in...

Missing Authorization vulnerability in add-ons.org PDF for WPForms allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects PDF for WPForms: from n/a through 5.3.0.

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30768 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mlaza jAlbum Bridge allows Stored XSS. This issue affects jAlbum Bridge: from n/a...

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30769 - Cross-Site Request Forgery (CSRF) vulnerability...

Cross-Site Request Forgery (CSRF) vulnerability in alexvtn WIP WooCarousel Lite allows Stored XSS. This issue affects WIP WooCarousel Lite: from n/a through 1.1.7.

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30770 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Syed Balkhi Charitable allows DOM-Based XSS. This issue affects Charitable: from n/a...

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30771 - Improper Neutralization of Input During Web...

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alain-Aymerick FRANCOIS WP Cassify allows DOM-Based XSS. This issue affects WP...

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30772 - Missing Authorization vulnerability in WPClever...

Missing Authorization vulnerability in WPClever WPC Smart Upsell Funnel for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Upsell Funnel for WooCommerce: from n/a through 3.0.4.

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30773 - Deserialization of Untrusted Data vulnerability...

Deserialization of Untrusted Data vulnerability in Cozmoslabs TranslatePress allows Object Injection. This issue affects TranslatePress: from n/a through 2.9.6.

security-database.com

27 Mar 2025

Riasztás

NA - CVE-2025-30775 - Improper Neutralization of Special Elements...

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AmentoTech Private Limited WPGuppy allows SQL Injection. This issue affects WPGuppy:...

security-database.com

First page
Previous page
…
3
4
5
6
7
8
9
10
11
…
Next page
Last page

Phone:	+36 1 279 6222 9am to 4pm
E-mail:	@email
Address:	H-1111 Budapest, Kende u. 13-17.