Total
276700 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-23994 | 1 Auto Hide Admin Bar Project | 1 Auto Hide Admin Bar | 2025-01-10 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Marcel Bootsman Auto Hide Admin Bar plugin <= 1.6.1 versions. | ||||
| CVE-2023-25464 | 1 Streamweasels | 1 Twitch Player | 2025-01-10 | 5.9 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in StreamWeasels Twitch Player plugin <= 2.1.0 versions. | ||||
| CVE-2023-25711 | 1 Wpglobus | 1 Wpglobus Translate Options | 2025-01-10 | 5.8 Medium |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPGlobus WPGlobus Translate Options plugin <= 2.1.0 versions. | ||||
| CVE-2023-25702 | 1 Fullworksplugins | 1 Quick Paypal Payments | 2025-01-10 | 5.9 Medium |
| Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions. | ||||
| CVE-2023-25713 | 1 Fullworksplugins | 1 Quick Paypal Payments | 2025-01-10 | 7.1 High |
| Unauth. Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Quick Paypal Payments plugin <= 5.7.25 versions. | ||||
| CVE-2023-24568 | 1 Dell | 1 Networker | 2025-01-10 | 5 Medium |
| Dell NetWorker, contains an Improper Validation of Certificate with Host Mismatch vulnerability in Rabbitmq port which could disallow replacing CA signed certificates. | ||||
| CVE-2025-0212 | 1 Campcodes | 1 Student Grading System | 2025-01-10 | 6.3 Medium |
| A vulnerability was found in Campcodes Student Grading System 1.0. It has been classified as critical. This affects an unknown part of the file /view_students.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. | ||||
| CVE-2023-29094 | 1 Piwebsolution | 1 Product Page Shipping Calculator For Woocommerce | 2025-01-10 | 5.9 Medium |
| Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in PI Websolution Product page shipping calculator for WooCommerce plugin <= 1.3.20 versions. | ||||
| CVE-2023-23799 | 1 Easy Panorama Project | 1 Easy Panorama | 2025-01-10 | 5.9 Medium |
| Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Leonardo Giacone Easy Panorama plugin <= 1.1.4 versions. | ||||
| CVE-2023-27620 | 1 Robogallery | 1 Robo Gallery | 2025-01-10 | 6.5 Medium |
| Auth. (contributor+) Stored Cross-site Scripting (XSS) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.12 versions. | ||||
| CVE-2023-28792 | 1 I13websolution | 1 Continuous Image Carosel With Lightbox | 2025-01-10 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Continuous Image Carousel With Lightbox plugin <= 1.0.15 versions. | ||||
| CVE-2023-29172 | 1 Wp-property-hive | 1 Propertyhive | 2025-01-10 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in PropertyHive plugin <= 1.5.46 versions. | ||||
| CVE-2023-29170 | 1 Piwebsolution | 1 Product Enquiry For Woocommerce | 2025-01-10 | 5.9 Medium |
| Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in PI Websolution Product Enquiry for WooCommerce, WooCommerce product catalog plugin <= 2.2.12 versions. | ||||
| CVE-2023-29388 | 1 Implecode | 1 Product Catalog Simple | 2025-01-10 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in impleCode Product Catalog Simple plugin <= 1.6.17 versions. | ||||
| CVE-2025-0213 | 1 Campcodes | 1 Project Management System | 2025-01-10 | 6.3 Medium |
| A vulnerability was found in Campcodes Project Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forms/update_forms.php?action=change_pic2&id=4. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. | ||||
| CVE-2022-45358 | 1 Colorlib | 1 Activello | 2025-01-10 | 5.4 Medium |
| Auth. (subscriber+) Reflected Cross-Site Scripting (XSS) vulnerability in Silkalns Activello theme <= 1.4.4 versions. | ||||
| CVE-2023-27610 | 1 Transbank | 1 Transbank Webpay Rest | 2025-01-10 | 5.5 Medium |
| Auth. (admin+) SQL Injection (SQLi) vulnerability in TransbankDevelopers Transbank Webpay REST plugin <= 1.6.6 versions. | ||||
| CVE-2023-30474 | 1 Ultimate Noindex Nofollow Tool Ii Project | 1 Ultimate Noindex Nofollow Tool Ii | 2025-01-10 | 4.3 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Kilian Evang Ultimate Noindex Nofollow Tool II plugin <= 1.3 versions. | ||||
| CVE-2023-22687 | 1 Freesoul Deactivate Plugins - Plugin Manager And Cleanup Project | 1 Freesoul Deactivate Plugins - Plugin Manager And Cleanup | 2025-01-10 | 3.7 Low |
| Insecure Storage of Sensitive Information vulnerability in Jose Mortellaro Freesoul Deactivate Plugins – Plugin manager and cleanup plugin <= 1.9.4.0 versions. | ||||
| CVE-2022-43480 | 1 Magneticlab | 1 Homepage Pop-up | 2025-01-10 | 4.8 Medium |
| Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Magneticlab Sàrl Homepage Pop-up plugin <= 1.2.5 versions. | ||||