CVE ID : CVE-2025-2228 Published : March 26, 2025, 1:15 p.m. | 1 hour, 21 minutes ago Description : The Responsive Addons for Elementor – Free Elementor Addons Plugin and Elementor Templates plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.6.8 the ‘register_user’ function. This makes it possible for […]
New Testing Framework Helps Evaluate Sandboxes Source: olandsfokus via Alamy Stock PhotoNEWS BRIEFOrganizations will require new ways to test the effectiveness of sandboxes as attackers improve their evasion techniques and malware rapidly evolves. … Read more Published Date: Mar 26, 2025 (3 hours, 50 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2024-4761
CVE ID : CVE-2025-1913 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.5.0 via deserialization of untrusted input from the ‘form_data’ parameter This […]
CVE ID : CVE-2025-2110 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The WP Compress – Instant Performance & Speed Optimization plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to missing capability checks on its on its AJAX functions in all versions up to, and […]
CVE ID : CVE-2025-1912 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.5.0 via the validate_file() Function. This makes it possible for authenticated […]
CVE ID : CVE-2025-1911 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the admin_log_page() function in all versions up to, and including, 2.5.0. […]
CVE ID : CVE-2025-1769 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.0 via the download_file() function. This makes it possible for authenticated attackers, […]
CVE ID : CVE-2025-1312 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The Ultimate Blocks – WordPress Blocks Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘buttonTextColor’ parameter in all versions up to, and including, 3.2.7 due to insufficient input sanitization and output escaping. This makes it […]
CVE ID : CVE-2024-13889 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The WordPress Importer plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 0.8.3 via deserialization of untrusted input in the ‘maybe_unserialize’ function. This makes it possible for authenticated attackers, with Administrator-level access […]
CVE ID : CVE-2024-13411 Published : March 26, 2025, 12:15 p.m. | 21 minutes ago Description : The Zapier for WordPress plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.5.1 via the updated_user() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
