The following table lists the changes that have been made to the CVE-2025-1439 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 26, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-1437 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Mar. 26, 2025 Action […]
The Jobs for WordPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.7.11 via the ‘job_postings_get_file’ parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
CVE ID : CVE-2025-2257 Published : March 26, 2025, 9:15 a.m. | 1 hour, 4 minutes ago Description : The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.16.10 via the compression_level setting. This is due to […]
CVE ID : CVE-2025-2167 Published : March 26, 2025, 9:15 a.m. | 1 hour, 4 minutes ago Description : The Event post plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘events_list’ shortcodes in all versions up to, and including, 5.9.9 due to insufficient input sanitization and output escaping on user supplied attributes. This […]
CVE ID : CVE-2025-2009 Published : March 26, 2025, 9:15 a.m. | 1 hour, 4 minutes ago Description : The Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the logging functionality in all versions up to, and including, 4.9.9.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers […]
CVE ID : CVE-2025-1514 Published : March 26, 2025, 9:15 a.m. | 1 hour, 4 minutes ago Description : The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to unauthorized filter calling due to insufficient restrictions on the get_smth() function in all versions up to, and including, 1.0.6.7. This makes […]
CVE ID : CVE-2024-13801 Published : March 26, 2025, 9:15 a.m. | 1 hour, 4 minutes ago Description : The BWL Advanced FAQ Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the ‘baf_set_notice_status’ AJAX action in all versions up […]
CVE ID : CVE-2024-13702 Published : March 26, 2025, 9:15 a.m. | 1 hour, 4 minutes ago Description : The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s ‘vCitaMeetingScheduler’ and ‘vCitaSchedulingCalendar’ shortcodes in all versions up to, and including, 2.7.4 due to insufficient input sanitization and output […]
Chrome Releases Critical Update to Address CVE-2025-2783 Vulnerability Google has rolled out a new security update for Chrome users, following the discovery of a vulnerability, CVE-2025-2783, affecting the Windows version of the browser. The update was made available on … Read more Published Date: Mar 26, 2025 (1 hour, 20 minutes ago) Vulnerabilities has been mentioned in […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
