Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-12-08
CVE-2025-12850 - My Auctions Allegro Plugin
The My auctions allegro plugin for WordPress is vulnerable to SQL Injection via the ‘auction_id’ parameter in all versions up to, and including, 3.6.32 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
My Auctions Allegro
CVE-2025-12850
Risk Score
Threat Entry
Updated 2025-12-08
CVE-2025-12181 - Contentstudio Plugin
The ContentStudio plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the cstu_update_post() function in all versions up to, and including, 1.3.7. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Contentstudio
CVE-2025-12181
Risk Score
Threat Entry
Updated 2025-12-08
CVE-2025-12154 - Auto Thumbnailer Plugin
The Auto Thumbnailer plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadThumb() function in all versions up to, and including, 1.0. This makes it possible for authenticated attackers, with Contributor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Auto Thumbnailer
CVE-2025-12154
Risk Score
Threat Entry
Updated 2025-12-08
CVE-2025-12153 - Featured Image Via Url Plugin
The Featured Image via URL plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation function in all versions up to, and including, 0.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Featured Image Via Url
CVE-2025-12153
Risk Score
Threat Entry
Updated 2025-12-08
CVE-2025-13066 - Demo Importer Plus Plugin
The Demo Importer Plus plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 2.0.6. This is due to insufficient file type validation detecting WXR files, allowing double extension files to bypass sanitization while being accepted as a valid WXR file. This makes it possible for authenticated attackers, with author-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Demo Importer Plus
CVE-2025-13066
Risk Score
Threat Entry
Updated 2025-12-08
CVE-2025-13543 - Postgallery Plugin
The PostGallery plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the 'PostGalleryUploader' class functions in all versions up to, and including, 1.12.5. This makes it possible for authenticated attackers, with subscriber-level and above permissions, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Postgallery
CVE-2025-13543
Risk Score
Threat Entry
Updated 2025-12-04
CVE-2025-11727 - Codistoconnect Plugin
The Omnichannel for WooCommerce: Google, Amazon, eBay & Walmart Integration – Powered by Codisto plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the sync() function in all versions up to, and including, 1.3.65 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Codistoconnect
CVE-2025-11727
Risk Score
Threat Entry
Updated 2025-12-15
CVE-2025-13646 - Modula Image Gallery Plugin
The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_unzip_file' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files with race condition on the affected site's server which may make remote code execution possible.
PLUGIN
Modula Image Gallery
CVE-2025-13646
Risk Score
Threat Entry
Updated 2025-12-15
CVE-2025-13645 - Modula Image Gallery Plugin
The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajax_unzip_file' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).
PLUGIN
Modula Image Gallery
CVE-2025-13645
Risk Score
Threat Entry
Updated 2025-12-02
CVE-2025-13516 - Smtp And Email Logs Plugin
The SureMail – SMTP and Email Logs Plugin for WordPress is vulnerable to Unrestricted Upload of File with Dangerous Type in versions up to and including 1.9.0. This is due to the plugin's save_file() function in inc/emails/handler/uploads.php which duplicates all email attachments to a web-accessible directory (wp-content/uploads/suremails/attachments/) without validating file extensions or content types. Files are saved with predictable names derived from MD5 hashes of their content. While the plugin attempts to protect this directory with an Apache .htaccess file to disable PHP execution, this protection is ineffective on nginx,…
PLUGIN
Smtp And Email Logs
CVE-2025-13516
Risk Score
Threat Entry
Updated 2025-12-02
CVE-2025-13724 - Vikrentcar Car Rental Management System Plugin
The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'month' parameter in all versions up to, and including, 1.4.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Vikrentcar Car Rental Management System
CVE-2025-13724
Risk Score
Threat Entry
Updated 2026-01-30
CVE-2025-13000 - Db Access Plugin
The db-access WordPress plugin through 0.8.7 does not have authorization in an AJAX action, allowing any authenticated users, such as subscriber to perform SQLI attacks
PLUGIN
Db Access
CVE-2025-13000
Risk Score
Threat Entry
Updated 2025-12-02
CVE-2025-13387 - Kadence Woocommerce Email Designer Plugin
The Kadence WooCommerce Email Designer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the customer name in all versions up to, and including, 1.5.17 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Kadence Woocommerce Email Designer
CVE-2025-13387
Risk Score
Threat Entry
Updated 2025-12-02
CVE-2025-12529 - Cost Calculator Builder Plugin
The Cost Calculator Builder plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the deleteOrdersFiles() function in all versions up to, and including, 3.6.3. This makes it possible for unauthenticated attackers to inject arbitrary file paths into the orders that are removed, when an administrator deletes them. This can lead to remote code execution when the right file is deleted (such as wp-config.php). This vulnerability requires the Cost Calculator Builder Pro version to be installed along with the free version in order to…
PLUGIN
Cost Calculator Builder
CVE-2025-12529
Risk Score
Threat Entry
Updated 2025-12-01
CVE-2025-13692 - Unlimited Elements For Elementor Plugin
The Unlimited Elements For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses the SVG file. A form with a file upload field must be created with the premium version of the plugin in order to exploit the vulnerability. However, once the form exists, the vulnerability is exploitable…
PLUGIN
Unlimited Elements For Elementor
CVE-2025-13692
Risk Score
Threat Entry
Updated 2025-12-01
CVE-2025-13536 - Blubrry Powerpress Plugin
The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and including, 11.15.2. This is due to the plugin validating file extensions but not halting execution when validation fails in the 'powerpress_edit_post' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Blubrry Powerpress
CVE-2025-13536
Risk Score
Threat Entry
Updated 2025-12-01
CVE-2025-7820 - Skt Paypal For Woocommerce Plugin
The SKT PayPal for WooCommerce plugin for WordPress is vulnerable to Payment Bypass in all versions up to, and including, 1.4. This is due to the plugin only enforcing client side controls instead of server-side controls when processing payments. This makes it possible for unauthenticated attackers to make confirmed purchases without actually paying for them.
PLUGIN
Skt Paypal For Woocommerce
CVE-2025-7820
Risk Score
Threat Entry
Updated 2025-12-01
CVE-2025-13680 - Tiger Theme
The Tiger theme for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 101.2.1. This is due to the plugin allowing a user to update the user role through the $user->set_role() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an administrator.
THEME
Tiger
CVE-2025-13680
Risk Score
Threat Entry
Updated 2026-01-09
CVE-2025-12061 - Tax Service Electronic Hdm Plugin
The TAX SERVICE Electronic HDM WordPress plugin before 1.2.1 does not authorization and CSRF checks in an AJAX action, allowing unauthenticated users to import and execute arbitrary SQL statements
PLUGIN
Tax Service Electronic Hdm
CVE-2025-12061
Risk Score
Threat Entry
Updated 2025-11-25
CVE-2025-13376 - Projectlist Plugin
The ProjectList plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 0.3.0. This makes it possible for authenticated attackers, with Editor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Projectlist
CVE-2025-13376
Risk Score