NA - CVE-2025-1217 - In PHP from 8.1.* before 8.1.32, from 8.2.*...
In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when http request module parses HTTP response obtained from a server, folded headers...
Medium - CVE-2024-13557 - The Shortcodes by United Themes plugin for...
The Shortcodes by United Themes plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.1.6. This is due to the software allowing users to...
High - CVE-2025-2006 - The Inline Image Upload for BBPress plugin for...
The Inline Image Upload for BBPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the file uploading functionality in all versions up to, and...
High - CVE-2025-2249 - The SoJ SoundSlides plugin for WordPress is...
The SoJ SoundSlides plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the soj_soundslides_options_subpanel() function in all versions up to, and...