Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-07-22
CVE-2025-7438 - Masterstudy Lms Pro Plugin
The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'install_and_activate_plugin' function in all versions up to, and including, 4.7.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. The vulnerability is difficult to exploit due to timing requirements and environmental factors.
PLUGIN
Masterstudy Lms Pro
CVE-2025-7438
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-7643 - Attachment Manager Plugin
The Attachment Manager plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the handle_actions() function in all versions up to, and including, 2.1.2. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).
PLUGIN
Attachment Manager
CVE-2025-7643
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-6718 - B1 Accounting Plugin
The B1.lt plugin for WordPress is vulnerable to SQL Injection due to a missing capability check on the b1_run_query AJAX action in all versions up to, and including, 2.2.56. This makes it possible for authenticated attackers, with Subscriber-level access and above, to execute and run arbitrary SQL commands.
PLUGIN
B1 Accounting
CVE-2025-6718
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-6717 - B1 Accounting Plugin
The B1.lt plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 2.2.56 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
B1 Accounting
CVE-2025-6717
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-6719 - Terms Descriptions Plugin
The Terms descriptions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.4.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
PLUGIN
Terms Descriptions
CVE-2025-6719
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-6726 - Block Editor Gallery Slider Plugin
The Block Editor Gallery Slider plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the classic_gallery_slider_options() function in all versions up to, and including, 1.1.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update limited post meta for arbitrary posts.
PLUGIN
Block Editor Gallery Slider
CVE-2025-6726
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-5800 - Testimonial Post Type Plugin
The Testimonial Post type plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘auto_play’ parameter in all versions up to, and including, 1.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Testimonial Post Type
CVE-2025-5800
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-5767 - Crowdfunding For Woocommerce Plugin
The Crowdfunding for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width’ parameter in all versions up to, and including, 3.1.14 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Crowdfunding For Woocommerce
CVE-2025-5767
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-5811 - Listicles For Wordpress Plugin
The Listly: Listicles For WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the Init() function in all versions up to, and including, 2.7. This makes it possible for unauthenticated attackers to delete arbitrary transient values on the WordPress site.
PLUGIN
Listicles For Wordpress
CVE-2025-5811
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-5754 - Useful Tab Block Responsive Amp Compatible Plugin
The Useful Tab Block – Responsive & AMP-Compatible plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘className’ parameter in all versions up to, and including, 1.3.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Useful Tab Block Responsive Amp Compatible
CVE-2025-5754
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-5752 - Vertical Scroll Image Slideshow Gallery Plugin
The Vertical scroll image slideshow gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width’ parameter in all versions up to, and including, 11.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Vertical Scroll Image Slideshow Gallery
CVE-2025-5752
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-6813 - Aapanel Wp Toolkit Plugin
The aapanel WP Toolkit plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization checks within the auto_login() function in versions 1.0 to 1.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to bypass all role checks and gain full admin privileges.
PLUGIN
Aapanel Wp Toolkit
CVE-2025-6813
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-7660 - Map My Locations Plugin
The Map My Locations plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'map_my_locations' shortcode in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Map My Locations
CVE-2025-7660
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-7648 - Ruven Themes Shortcodes Plugin
The Ruven Themes: Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ruven_button' shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Ruven Themes Shortcodes
CVE-2025-7648
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-7638 - Custom Form Builder Plugin
The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to time-based SQL Injection via the `order_by` parameter in all versions up to, and including, 1.45.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Custom Form Builder
CVE-2025-7638
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-6053 - Zuppler Online Ordering Plugin
The Zuppler Online Ordering plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.0. This is due to missing or incorrect nonce validation on the 'zuppler-online-ordering-options' page. This makes it possible for unauthenticated attackers to update settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
PLUGIN
Zuppler Online Ordering
CVE-2025-6053
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-6781 - Copymatic Plugin
The Copymatic – AI Content Writer & Generator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the 'copymatic-menu' page. This makes it possible for unauthenticated attackers to update the copymatic_apikey option via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
PLUGIN
Copymatic
CVE-2025-6781
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-5816 - Biteship Plugin
The Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – Biteship plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.2.0 via the get_order_detail() due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view other user's orders.
PLUGIN
Biteship
CVE-2025-5816
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-3740 - For Wordpress Is Vulnerable To Local File Inclusion In All Versions Up To Plugin
The School Management System for Wordpress plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 93.1.0 via the 'page' parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included. The Local File…
PLUGIN
For Wordpress Is Vulnerable To Local File Inclusion In All Versions Up To
CVE-2025-3740
Risk Score
Threat Entry
Updated 2025-07-22
CVE-2025-7431 - Knowledge Base Plugin
The Knowledge Base plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin slug setting in all versions up to, and including, 2.3.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
PLUGIN
Knowledge Base
CVE-2025-7431
Risk Score