The following table lists the changes that have been made to the CVE-2025-66314 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Nov. 27, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-13762 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Nov. 27, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-34351 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Nov. 27, 2025 Action […]
CVE ID : CVE-2025-12713 Published : Nov. 27, 2025, 2:26 a.m. | 52 minutes ago Description : The Soundslides plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the soundslides shortcode in all versions up to, and including, 1.4.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible […]
CVE ID : CVE-2025-12670 Published : Nov. 27, 2025, 2:26 a.m. | 52 minutes ago Description : The wp-twitpic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters of the ‘twitpic’ shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for […]
CVE ID : CVE-2025-12649 Published : Nov. 27, 2025, 2:26 a.m. | 52 minutes ago Description : The SortTable Post plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in the sorttablepost shortcode in all versions up to, and including, 4.2. This is due to insufficient input sanitization and output escaping on […]
CVE ID : CVE-2025-12579 Published : Nov. 27, 2025, 2:26 a.m. | 52 minutes ago Description : The Reuters Direct plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ‘logoff’ action in all versions up to, and including, 3.0.0. This makes it possible for unauthenticated attackers to […]
CVE ID : CVE-2025-12712 Published : Nov. 27, 2025, 2:26 a.m. | 52 minutes ago Description : The Shouty plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the shouty shortcode in all versions up to, and including, 0.2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible […]
CVE ID : CVE-2025-12666 Published : Nov. 27, 2025, 2:26 a.m. | 52 minutes ago Description : The Google Drive upload and download link plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘link’ parameter of the ‘atachfilegoogle’ shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output […]
CVE ID : CVE-2025-12578 Published : Nov. 27, 2025, 2:26 a.m. | 52 minutes ago Description : The Reuters Direct plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.0. This is due to missing or incorrect nonce validation on the the ‘class-reuters-direct-settings.php’ page. This makes it possible for […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
