The following table lists the changes that have been made to the CVE-2025-0390 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 11, 2025 Action […]
The following table lists the changes that have been made to the CVE-2024-42175 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Jan. 11, 2025 Action […]
CVE ID : CVE-2024-12877 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.19.2 via deserialization of untrusted input from the donation form like ‘firstName’. This makes it […]
CVE ID : CVE-2024-12527 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The Perfect Portal Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘perfect_portal_intake_form’ shortcode in all versions up to, and including, 3.0.3 due to insufficient input sanitization and output escaping on user supplied attributes. This […]
CVE ID : CVE-2024-12520 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The Dominion – Domain Checker for WPBakery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘dominion_shortcodes_domain_search_6’ shortcode in all versions up to, and including, 2.2.2 due to insufficient input sanitization and output escaping on user […]
CVE ID : CVE-2024-12519 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The TCBD Auto Refresher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘tcbd_auto_refresh’ shortcode in all versions up to, and including, 2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This […]
CVE ID : CVE-2024-12412 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The Rental and Booking Manager for Bike, Car, Dress, Resort with WooCommerce Integration – WpRently | WordPress plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘active_tab’ parameter in all versions up to, and including, 2.2.1 […]
CVE ID : CVE-2024-12407 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The Push Notification for Post and BuddyPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘pushnotificationid’ parameter in all versions up to, and including, 2.06 due to insufficient input sanitization and output escaping. This makes it […]
CVE ID : CVE-2024-12116 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The Unlimited Theme Addon For Elementor and WooCommerce plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.1 via the ‘uta-template’ shortcode due to insufficient restrictions on which posts can be included. This […]
CVE ID : CVE-2024-11915 Published : Jan. 11, 2025, 8:15 a.m. | 33 minutes ago Description : The RRAddons for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.1.0 via the Popup block due to insufficient restrictions on which posts can be included. This makes it possible for […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
