Show filters
349,939 Total Results
Displaying 91-100 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
Unknown

CVE-2025-26931

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Cross-Site Request Forgery (CSRF) vulnerability in Tribulant Software Tribulant Gallery Voting allows Stored XSS. This issue affects Tribulant Gallery Voting: from n/a through 1.2.1.
0
0
Attacker Value
Unknown

CVE-2025-26928

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Missing Authorization vulnerability in xfinitysoft Order Limit for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Order Limit for WooCommerce: from n/a through 3.0.2.
0
0
Attacker Value
Unknown

CVE-2025-26926

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Cross-Site Request Forgery (CSRF) vulnerability in NotFound Booknetic. This issue affects Booknetic: from n/a through 4.0.9.
0
0
Attacker Value
Unknown

CVE-2025-26915

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PickPlugins Wishlist allows SQL Injection. This issue affects Wishlist: from n/a through 1.0.41.
0
0
Attacker Value
Unknown

CVE-2025-26913

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webandprint AR For WordPress allows DOM-Based XSS. This issue affects AR For WordPress: from n/a through 7.7.
0
0
Attacker Value
Unknown

CVE-2025-26912

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HashThemes Easy Elementor Addons allows Stored XSS. This issue affects Easy Elementor Addons: from n/a through 2.1.6.
0
0
Attacker Value
Unknown

CVE-2025-26911

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Bowo System Dashboard allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects System Dashboard: from n/a through 2.8.18.
0
0
Attacker Value
Unknown

CVE-2025-26907

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Estatik Mortgage Calculator Estatik allows Stored XSS. This issue affects Mortgage Calculator Estatik: from n/a through 2.0.12.
0
0
Attacker Value
Unknown

CVE-2025-26905

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Estatik Estatik allows PHP Local File Inclusion. This issue affects Estatik: from n/a through 4.1.9.
0
0
Attacker Value
Unknown

CVE-2025-26904

Disclosure Date: February 25, 2025 (last updated February 26, 2025)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gal_op WP Responsive Auto Fit Text allows DOM-Based XSS. This issue affects WP Responsive Auto Fit Text: from n/a through 0.2.
0
0
View More Topics  < Previous  Next >