Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total14,273
Critical855
High2,814
Medium10,408
Reset
Showing 3161-3180 of 14273 records
Threat Entry Updated 2025-10-16

CVE-2025-10132 - Dhivehi Text Plugin

The Dhivehi Text plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'dhivehi' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Dhivehi Text

CVE-2025-10132

MEDIUM CVSS 6.4 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-10056 - Task Scheduler Plugin

The Task Scheduler plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.6.3 via the “Check Website” task. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

PLUGIN Task Scheduler

CVE-2025-10056

MEDIUM CVSS 4.4 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-10041 - Flex Qr Code Generator Plugin

The Flex QR Code Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in thesave_qr_code_to_db() function in all versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.

PLUGIN Flex Qr Code Generator

CVE-2025-10041

CRITICAL CVSS 9.8 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-10051 - Demo Import Kit Plugin

The Demo Import Kit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 1.1.0 via the import functionality. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

PLUGIN Demo Import Kit

CVE-2025-10051

HIGH CVSS 7.2 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-10038 - Binary Mlm Plan Plugin

The Binary MLM Plan plugin for WordPress is vulnerable to limited Privilege Escalation in all versions up to, and including, 3.0. This is due to bmp_user role granting all users with the manage_bmp capability by default upon registration through the plugin's form. This makes it possible for unauthenticated attackers to register and manage the plugin's settings.

PLUGIN Binary Mlm Plan

CVE-2025-10038

MEDIUM CVSS 6.5 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-10045 - Onoffice For Wp Websites Plugin

The onOffice for WP-Websites plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter in all versions up to, and including, 5.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Editor-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Onoffice For Wp Websites

CVE-2025-10045

MEDIUM CVSS 4.9 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-11501 - Dynamically Display Posts Plugin

The Dynamically Display Posts plugin for WordPress is vulnerable to SQL Injection via the 'tax_query' parameter in all versions up to, and including, 1.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Dynamically Display Posts

CVE-2025-11501

HIGH CVSS 7.5 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-11-26

CVE-2025-11161 - Page Builder Plugin

The WPBakery Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the vc_custom_heading shortcode in all versions up to, and including, 8.6.1. This is due to insufficient restriction of allowed HTML tags and improper sanitization of user-supplied attributes in the font_container parameter. This makes it possible for authenticated attackers with contributor-level access or higher to inject arbitrary web scripts in posts that will execute whenever a user accesses an injected page via the vc_custom_heading shortcode with malicious tag and text attributes granted they have access to use…

PLUGIN Page Builder

CVE-2025-11161

MEDIUM CVSS 6.4 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-11-26

CVE-2025-11160 - Page Builder Plugin

The WPBakery Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Custom JS module in all versions up to, and including, 8.6.1. This is due to insufficient input sanitization and output escaping of user-supplied JavaScript code in the Custom JS module. This makes it possible for authenticated attackers with contributor-level access or higher to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page via the WPBakery Page Builder Custom JS module granted they have access to the WPBakery editor…

PLUGIN Page Builder

CVE-2025-11160

MEDIUM CVSS 6.4 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-8561 - Ova Advent Plugin

The Ova Advent plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.1.7 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Ova Advent

CVE-2025-8561

MEDIUM CVSS 6.4 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-6042 - Lisfinity Wordpress Theme Plugin

The Lisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.4.0. This is due to the plugin assigning the editor role by default. While limitations with respect to capabilities are put in place, use of the API is not restricted. This vulnerability can be leveraged together with CVE-2025-6038 to obtain admin privileges.

PLUGIN Lisfinity Wordpress Theme

CVE-2025-6042

HIGH CVSS 7.3 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-16

CVE-2025-11176 - Quick Featured Images Plugin

The Quick Featured Images plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 13.7.2 via the qfi_set_thumbnail and qfi_delete_thumbnail AJAX actions due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Author-level access and above, to change or remove featured images of other user's posts.

PLUGIN Quick Featured Images

CVE-2025-11176

MEDIUM CVSS 4.3 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2026-01-09

CVE-2025-10406 - Blindmatrix E Commerce Plugin

The BlindMatrix e-Commerce WordPress plugin before 3.1 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users, such as contributors, to perform LFI attacks.

PLUGIN Blindmatrix E Commerce

CVE-2025-10406

MEDIUM CVSS 5.5 2025-10-15
Open Full Technical Breakdown
Threat Entry Updated 2025-10-14

CVE-2025-8594 - Before 2 Plugin

The Pz-LinkCard WordPress plugin before 2.5.7 does not validate a parameter before making a request to it, which could allow users with a role as low as Contributor to perform SSRF attack.

PLUGIN Before 2

CVE-2025-8594

LOW CVSS 3.8 2025-10-14
Open Full Technical Breakdown
Threat Entry Updated 2025-10-14

CVE-2025-10732 - Drag And Drop Form Builder For Wordpress Plugin

The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to Sensitive Information Disclosure in all versions up to, and including, 1.12.1. This is due to improper access control implementation on the '/wp-json/sureforms/v1/srfm-global-settings' REST API endpoint. This makes it possible for authenticated attackers, with contributor-level access and above, to retrieve sensitive information including API keys for Google reCAPTCHA, Cloudflare Turnstile, hCaptcha, admin email addresses, and security-related form settings.

PLUGIN Drag And Drop Form Builder For Wordpress

CVE-2025-10732

MEDIUM CVSS 4.3 2025-10-14
Open Full Technical Breakdown
Threat Entry Updated 2025-10-14

CVE-2025-10357 - Simple Seo Plugin

The Simple SEO WordPress plugin before 2.0.32 does not sanitise and escape some parameters when outputing them in the page, which could allow users with a role as low as contributor to perform Cross-Site Scripting attacks.

PLUGIN Simple Seo

CVE-2025-10357

MEDIUM CVSS 6.1 2025-10-14
Open Full Technical Breakdown
Threat Entry Updated 2025-10-14

CVE-2025-9698 - Plus Addons For Elementor Plugin

The Plus Addons for Elementor WordPress plugin before 6.3.16 does not sanitize SVG file contents, which could allow users with minimum role access as Author to perform Stored Cross-Site Scripting attacks.

PLUGIN Plus Addons For Elementor

CVE-2025-9698

MEDIUM CVSS 6.8 2025-10-13
Open Full Technical Breakdown
Threat Entry Updated 2025-10-14

CVE-2025-9975 - Wp Scraper Plugin

The WP Scraper plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.8.1 via the wp_scraper_extract_content function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services. On Cloud instances, this issue allows for metadata retrieving.

PLUGIN Wp Scraper

CVE-2025-9975

MEDIUM CVSS 6.8 2025-10-11
Open Full Technical Breakdown
Threat Entry Updated 2025-10-14

CVE-2025-9950 - Error Log Viewer Plugin

The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.6 via the rrrlgvwr_get_file function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

PLUGIN Error Log Viewer

CVE-2025-9950

MEDIUM CVSS 4.9 2025-10-11
Open Full Technical Breakdown
Threat Entry Updated 2025-10-14

CVE-2025-8593 - Gsheetconnector Gravity Forms Plugin

The GSheetConnector For Gravity Forms plugin for WordPress is vulnerable to authorization bypass in versions less than, or equal to, 1.3.27. This is due to a missing capability check on the 'install_plugin' function. This makes it possible for authenticated attackers, with subscriber-level access and above to install plugins on the target site and potentially achieve arbitrary code execution on the server under certain conditions.

PLUGIN Gsheetconnector Gravity Forms

CVE-2025-8593

HIGH CVSS 8.8 2025-10-11
Open Full Technical Breakdown
Scroll to top