Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total919
Critical919
High0
Medium0
Reset
Showing 281-300 of 919 records
Threat Entry Updated 2025-07-07

CVE-2025-5304 - Pt Project Notebooks Plugin

The PT Project Notebooks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the wpnb_pto_new_users_add() function in versions 1.0.0 through 1.1.3. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.

PLUGIN Pt Project Notebooks

CVE-2025-5304

CRITICAL CVSS 9.8 2025-06-28
Open Full Technical Breakdown
Threat Entry Updated 2025-06-30

CVE-2025-53260 - This Issue Affects File Manager Plugin

Unrestricted Upload of File with Dangerous Type vulnerability in getredhawkstudio File Manager Plugin For Wordpress allows Upload a Web Shell to a Web Server. This issue affects File Manager Plugin For Wordpress: from n/a through 7.5.

PLUGIN This Issue Affects File Manager

CVE-2025-53260

CRITICAL CVSS 9.1 2025-06-27
Open Full Technical Breakdown
Threat Entry Updated 2025-06-30

CVE-2024-12827 - Listing Wordpress Theme

The DWT - Directory & Listing WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.3.6. This is due to the plugin not properly checking for an empty token value prior to resetting a user's password through the dwt_listing_reset_password() function. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.

THEME Listing Wordpress Theme

CVE-2024-12827

CRITICAL CVSS 9.8 2025-06-27
Open Full Technical Breakdown
Threat Entry Updated 2025-07-02

CVE-2025-6688 - Simple Payment Plugin

The Simple Payment plugin for WordPress is vulnerable to Authentication Bypass in versions 1.3.6 to 2.3.8. This is due to the plugin not properly verifying a user's identity prior to logging them in through the create_user() function. This makes it possible for unauthenticated attackers to log in as administrative users.

PLUGIN Simple Payment

CVE-2025-6688

CRITICAL CVSS 9.8 2025-06-27
Open Full Technical Breakdown
Threat Entry Updated 2025-07-09

CVE-2025-4334 - Simple User Registration Plugin

The Simple User Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.3. This is due to insufficient restrictions on user meta values that can be supplied during registration. This makes it possible for unauthenticated attackers to register as an administrator.

PLUGIN Simple User Registration

CVE-2025-4334

CRITICAL CVSS 9.8 2025-06-26
Open Full Technical Breakdown
Threat Entry Updated 2025-07-09

CVE-2025-1562 - Funnelkit Automations Plugin

The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the install_or_activate_addon_plugins() function and a weak nonce hash in all versions up to, and including, 3.5.3. This makes it possible for unauthenticated attackers to install arbitrary plugins on the site that can be leveraged to further infect a vulnerable site.

PLUGIN Funnelkit Automations

CVE-2025-1562

CRITICAL CVSS 9.8 2025-06-18
Open Full Technical Breakdown
Threat Entry Updated 2025-06-16

CVE-2025-6065 - Image Resizer On The Fly Plugin

The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).

PLUGIN Image Resizer On The Fly

CVE-2025-6065

CRITICAL CVSS 9.1 2025-06-14
Open Full Technical Breakdown
Threat Entry Updated 2025-06-16

CVE-2025-5288 - Import Export With Custom Rest Api Plugin

The REST API | Custom API Generator For Cross Platform And Import Export In WP plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the process_handler() function in versions 1.0.0 to 2.0.3. This makes it possible for unauthenticated attackers to POST an arbitrary import_api URL, import specially crafted JSON, and thereby create a new user with full Administrator privileges.

PLUGIN Import Export With Custom Rest Api

CVE-2025-5288

CRITICAL CVSS 9.8 2025-06-13
Open Full Technical Breakdown
Threat Entry Updated 2025-07-10

CVE-2025-4973 - Workreap Plugin

The Workreap plugin for WordPress, used by the Workreap - Freelance Marketplace WordPress Theme, is vulnerable to authentication bypass in all versions up to, and including, 3.3.1. This is due to the plugin not properly verifying a user's identity prior to logging them in when verifying an account with an email address. This makes it possible for unauthenticated attackers to log in as registered users, including administrators, if they know user's email address. This is only exploitable fi the user's confirmation_key has not already been set by the plugin.

PLUGIN Workreap

CVE-2025-4973

CRITICAL CVSS 9.8 2025-06-12
Open Full Technical Breakdown
Threat Entry Updated 2025-06-12

CVE-2025-31396 - Allows Object Injection Theme

Deserialization of Untrusted Data vulnerability in themeton FLAP - Business WordPress Theme allows Object Injection. This issue affects FLAP - Business WordPress Theme: from n/a through 1.5.

THEME Allows Object Injection

CVE-2025-31396

CRITICAL CVSS 9.8 2025-06-09
Open Full Technical Breakdown
Threat Entry Updated 2025-06-06

CVE-2025-5486 - Wp Email Debug Plugin

The WP Email Debug plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the WPMDBUG_handle_settings() function in versions 1.0 to 1.1.0. This makes it possible for unauthenticated attackers to enable debugging and send all emails to an attacker controlled address and then trigger a password reset for an administrator to gain access to an administrator account.

PLUGIN Wp Email Debug

CVE-2025-5486

CRITICAL CVSS 9.8 2025-06-06
Open Full Technical Breakdown
Threat Entry Updated 2025-06-05

CVE-2025-5701 - Hypercomments Plugin

The HyperComments plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the hc_request_handler function in all versions up to, and including, 1.2.2. This makes it possible for unauthenticated attackers to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.

PLUGIN Hypercomments

CVE-2025-5701

CRITICAL CVSS 9.8 2025-06-05
Open Full Technical Breakdown
Threat Entry Updated 2025-06-04

CVE-2025-4578 - File Provider Plugin

The File Provider WordPress plugin through 1.2.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection

PLUGIN File Provider

CVE-2025-4578

CRITICAL CVSS 9.8 2025-06-04
Open Full Technical Breakdown
Threat Entry Updated 2025-06-04

CVE-2025-4797 - Golo City Travel Guide Wordpress Theme

The Golo - City Travel Guide WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.7.0. This is due to the plugin not properly validating a user's identity prior to setting an authorization cookie. This makes it possible for unauthenticated attackers to log in as any user, including administrators, provided they know the user's email address.

THEME Golo City Travel Guide Wordpress Theme

CVE-2025-4797

CRITICAL CVSS 9.8 2025-06-03
Open Full Technical Breakdown
Threat Entry Updated 2025-06-02

CVE-2025-4631 - Profitori Plugin

The Profitori plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the stocktend_object endpoint in versions 2.0.6.0 to 2.1.1.3. This makes it possible to trigger the save_object_as_user() function for objects whose '_datatype' is set to 'users',. This allows unauthenticated attackers to write arbitrary strings straight into the user’s wp_capabilities meta field, potentially elevating the privileges of an existing user account or a newly created one to that of an administrator.

PLUGIN Profitori

CVE-2025-4631

CRITICAL CVSS 9.8 2025-05-31
Open Full Technical Breakdown
Threat Entry Updated 2025-06-02

CVE-2025-4607 - Psw Login And Registration Plugin

The PSW Front-end Login & Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.12 via the customer_registration() function. This is due to the use of a weak, low-entropy OTP mechanism in the forget() function. This makes it possible for unauthenticated attackers to initiate a password reset for any user, including administrators, and elevate their privileges for full site takeover.

PLUGIN Psw Login And Registration

CVE-2025-4607

CRITICAL CVSS 9.8 2025-05-31
Open Full Technical Breakdown
Threat Entry Updated 2025-07-11

CVE-2025-5058 - Emagicone Store Manager For Woocommerce Plugin

The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_image() function in all versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. This is only exploitable by unauthenticated attackers in default configurations where the the default password is left as 1:1, or where the attacker gains access to the credentials.

PLUGIN Emagicone Store Manager For Woocommerce

CVE-2025-5058

CRITICAL CVSS 9.8 2025-05-24
Open Full Technical Breakdown
Threat Entry Updated 2025-07-11

CVE-2025-4603 - Emagicone Store Manager For Woocommerce Plugin

The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_file() function in all versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). This is only exploitable by unauthenticated attackers in default configurations where the the default password is left as 1:1, or where the attacker gains access to…

PLUGIN Emagicone Store Manager For Woocommerce

CVE-2025-4603

CRITICAL CVSS 9.1 2025-05-24
Open Full Technical Breakdown
Threat Entry Updated 2025-12-05

CVE-2025-47658 - Wsdesk Plugin

Unrestricted Upload of File with Dangerous Type vulnerability in ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System allows Upload a Web Shell to a Web Server. This issue affects ELEX WordPress HelpDesk & Customer Ticketing System: from n/a through 3.2.7.

PLUGIN Wsdesk

CVE-2025-47658

CRITICAL CVSS 9.9 2025-05-23
Open Full Technical Breakdown
Threat Entry Updated 2026-01-28

CVE-2025-39485 - Grand Tour Plugin

Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour | Travel Agency WordPress allows Object Injection. This issue affects Grand Tour | Travel Agency WordPress: from n/a through 5.5.1.

PLUGIN Grand Tour

CVE-2025-39485

CRITICAL CVSS 9.8 2025-05-23
Open Full Technical Breakdown
Scroll to top