WordPress Plugin Vulnerability Exposes 10,000 Sites to Code Execution Attacks A critical security flaw in the GiveWP Donation Plugin tracked as CVE-2025-0912, has exposed over 100,000 WordPress websites to unauthenticated remote code execution (RCE) attacks. The vulnerability, … Read more Published Date: Mar 05, 2025 (2 hours, 17 minutes ago) Vulnerabilities has been mentioned in this article. […]
The following table lists the changes that have been made to the CVE-2024-11216 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 05, 2025 Action […]
Chrome 134 Released with Several Bug fixes Google has released Chrome 134 to the stable channel, addressing 14 security vulnerabilities across its core components. These fixes include high-severity flaws that could lead to browser crashes, dat … Read more Published Date: Mar 05, 2025 (3 hours, 25 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-1923 […]
Tripwire Patch Priority Index for February 2025 Tripwire’s February 2025 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft.Up first on the list are patches for Microsoft Edge (Chromium-based) that resolve 4 remote c … Read more Published Date: Mar 05, 2025 (3 hours, 37 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-24042 CVE-2025-24039 […]
CISA Expands Known Exploited Vulnerabilities Catalog with Four Critical Issues The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) Catalog with four new vulnerabilities, adding to the growing list of cyber ri … Read more Published Date: Mar 05, 2025 (3 hours, 56 minutes ago) Vulnerabilities has been mentioned in this […]
CVE ID : CVE-2025-1463 Published : March 5, 2025, 12:15 p.m. | 2 hours, 2 minutes ago Description : The Spreadsheet Integration plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.2. This is due to improper nonce validation within the class-wpgsi-show.php script. This makes it possible for unauthenticated attackers […]
CVE ID : CVE-2024-13471 Published : March 5, 2025, 12:15 p.m. | 2 hours, 2 minutes ago Description : The DesignThemes Core Features plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the dt_process_imported_file function in all versions up to, and including, 4.7. This makes it possible for unauthenticated […]
CVE ID : CVE-2024-13423 Published : March 5, 2025, 12:15 p.m. | 2 hours, 2 minutes ago Description : The Sparkling theme for WordPress is vulnerable to unauthorized plugin activation/deactivation due to a missing capability check on the ‘sparkling_activate_plugin’ and ‘sparkling_deactivate_plugin’ functions in versions up to, and including, 2.4.9. This makes it possible for unauthenticated attackers to […]
CVE ID : CVE-2024-12281 Published : March 5, 2025, 12:15 p.m. | 2 hours, 2 minutes ago Description : The Homey theme for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.2. This is due to the plugin allowing users who are registering new accounts to set their own role. This makes […]
CVE ID : CVE-2024-11951 Published : March 5, 2025, 12:15 p.m. | 2 hours, 2 minutes ago Description : The Homey Login Register plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.0. This is due to the plugin allowing users who are registering new accounts to set their own role. […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
