Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total14,273
Critical855
High2,814
Medium10,408
Reset
Showing 2901-2920 of 14273 records
Threat Entry Updated 2025-11-06

CVE-2025-12677 - Kiotvietsync Plugin

The KiotViet Sync plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.5 via the register_api_route() function in kiotvietsync/includes/public_actions/WebHookAction.php. This makes it possible for unauthenticated attackers to extract the webhook token value when configured.

PLUGIN Kiotvietsync

CVE-2025-12677

MEDIUM CVSS 5.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12676 - Kiotvietsync Plugin

The KiotViet Sync plugin for WordPress is vulnerable to authorizarion bypass in all versions up to, and including, 1.8.5. This is due to the plugin using a hardcoded password for authentication in the QueryControllerAdmin::authenticated function. This makes it possible for unauthenticated attackers to create and sync products.

PLUGIN Kiotvietsync

CVE-2025-12676

MEDIUM CVSS 5.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12675 - Kiotvietsync Plugin

The KiotViet Sync plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the saveConfig() function in all versions up to, and including, 1.8.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the plugin's config.

PLUGIN Kiotvietsync

CVE-2025-12675

MEDIUM CVSS 4.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12384 - And Other Files Plugin

The Document Embedder – Embed PDFs, Word, Excel, and Other Files plugin for WordPress is vulnerable to unauthorized access/modification/loss of data in all versions up to, and including, 2.0.0. This is due to the plugin not properly verifying that a user is authorized to perform an action in the "bplde_save_document_library", "bplde_get_all", "bplde_get_single", and "bplde_delete_document_library" functions. This makes it possible for unauthenticated attackers to create, read, update, and delete arbitrary document_library posts.

PLUGIN And Other Files

CVE-2025-12384

HIGH CVSS 8.6 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12139 - Integrate Google Drive Plugin

The File Manager for Google Drive – Integrate Google Drive with WordPress plugin for WordPress is vulnerable to sensitive information exposure in all versions up to, and including, 1.5.3 via the "get_localize_data" function. This makes it possible for unauthenticated attackers to extract sensitive data including Google OAuth credentials (client_id and client_secret) and Google account email addresses.

PLUGIN Integrate Google Drive

CVE-2025-12139

HIGH CVSS 7.5 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12388 - Responsive Image And Content Carousel Plugin

The B Carousel Block – Responsive Image and Content Carousel plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 1.1.5. This is due to the plugin not validating user-supplied URLs before passing them to the wp_remote_request() function. This makes it possible for authenticated attackers, with subscriber-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

PLUGIN Responsive Image And Content Carousel

CVE-2025-12388

MEDIUM CVSS 6.4 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-11917 - Wpematico Rss Feed Fetcher Plugin

The WPeMatico RSS Feed Fetcher plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.8.11 via the wpematico_test_feed() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

PLUGIN Wpematico Rss Feed Fetcher

CVE-2025-11917

MEDIUM CVSS 6.4 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-11373 - Post Slider Carousel Plugin

The Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider, Post Slider Carousel plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability checks in the "depicter-media-upload" AJAX route in all versions up to, and including, 4.0.4. This makes it possible for authenticated attackers, with Contributor-level access and above, to upload limited files on the affected site's server.

PLUGIN Post Slider Carousel

CVE-2025-11373

MEDIUM CVSS 4.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-6027 - Ace User Management Plugin

The Ace User Management WordPress plugin through 2.0.3 does not properly validate that a password reset token is associated with the user who requested it, allowing any authenticated users, such as subscriber to reset the password of arbitrary accounts, including administrators.

PLUGIN Ace User Management

CVE-2025-6027

MEDIUM CVSS 6.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-11749 - Ai Engine Plugin

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the /mcp/v1/ REST API endpoint that exposes the 'Bearer Token' value when 'No-Auth URL' is enabled. This makes it possible for unauthenticated attackers to extract the bearer token, which can be used to gain access to a valid session and perform many actions like creating a new administrator account, leading to privilege escalation.

PLUGIN Ai Engine

CVE-2025-11749

CRITICAL CVSS 9.8 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-10567 - Before 3 Plugin

The FunnelKit WordPress plugin before 3.12.0.1 does not sanitize user input before echoing it back in some of its checkout-related AJAX actions, allowing attackers to conduct reflected XSS attacks against logged-in users.

PLUGIN Before 3

CVE-2025-10567

MEDIUM CVSS 6.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-10873 - Elementinvader Addons For Elementor Plugin

The ElementInvader Addons for Elementor WordPress plugin before 1.4.1 allows unauthenticated user to send arbitrary e-mails to arbitrary addresses due to missing authorization on the elementinvader_addons_for_elementor_forms_send_form action.

PLUGIN Elementinvader Addons For Elementor

CVE-2025-10873

MEDIUM CVSS 5.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12197 - The Events Calendar Plugin

The The Events Calendar plugin for WordPress is vulnerable to blind SQL Injection via the 's' parameter in versions 6.15.1.1 to 6.15.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN The Events Calendar

CVE-2025-12197

HIGH CVSS 7.5 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-11162 - Ultimate Addons For Gutenberg Plugin

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom CSS in all versions up to, and including, 2.19.14 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Ultimate Addons For Gutenberg

CVE-2025-11162

MEDIUM CVSS 6.4 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12580 - Sms For Wordpress Plugin

The SMS for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'paged' parameter in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.

PLUGIN Sms For Wordpress

CVE-2025-12580

MEDIUM CVSS 6.1 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-11835 - Content Restriction Plugin

The Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability and validation check on the PMS_AJAX_Checkout_Handler::process_payment() function in all versions up to, and including, 2.16.4. This makes it possible for unauthenticated attackers to trigger stored auto-renew charges for arbitrary members.

PLUGIN Content Restriction

CVE-2025-11835

MEDIUM CVSS 5.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-06

CVE-2025-12582 - Features Plugin

The Features plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'features_revert_option AJAX endpoint in all versions up to, and including, 0.0.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to revert options.

PLUGIN Features

CVE-2025-12582

MEDIUM CVSS 4.3 2025-11-05
Open Full Technical Breakdown
Threat Entry Updated 2025-11-04

CVE-2025-12184 - Meetinglist Plugin

The MeetingList plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 0.11 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.

PLUGIN Meetinglist

CVE-2025-12184

MEDIUM CVSS 4.4 2025-11-04
Open Full Technical Breakdown
Threat Entry Updated 2025-11-04

CVE-2025-12682 - Easy Upload Files During Checkout Plugin

The Easy Upload Files During Checkout plugin for WordPress is vulnerable to arbitrary JavaScript file uploads due to missing file type validation in the 'file_during_checkout' function in all versions up to, and including, 2.9.8. This makes it possible for unauthenticated attackers to upload arbitrary JavaScript files on the affected site's server which may make remote code execution possible.

PLUGIN Easy Upload Files During Checkout

CVE-2025-12682

CRITICAL CVSS 9.8 2025-11-04
Open Full Technical Breakdown
Scroll to top