Medium - CVE-2025-4666 - The Zotpress plugin for WordPress is vulnerable...
The Zotpress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nickname’ parameter in all versions up to, and including, 7.3.15 due to insufficient input sanitization and...
Medium - CVE-2025-4798 - The WP-DownloadManager plugin for WordPress is...
The WP-DownloadManager plugin for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 1.68.10. This is due to a lack of restriction on the directory an...
High - CVE-2025-4799 - The WP-DownloadManager plugin for WordPress is...
The WP-DownloadManager plugin for WordPress is vulnerable to arbitrary file deletion due to lack of restriction on the directory a file can be deleted from in all versions up to, and including,...
Medium - CVE-2024-35295 - A vulnerability has been identified in Perfect...
A vulnerability has been identified in Perfect Harmony GH180 (All versions >= V8.0 < V8.3.3 with NXGPro+ controller manufactured between April 2020 to April 2025). The maintenance connection of...