Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-07-10
CVE-2025-4857 - Newsletters Plugin
The Newsletters plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.9.9.9 via the 'file' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.
PLUGIN
Newsletters
CVE-2025-4857
Risk Score
Threat Entry
Updated 2025-06-02
CVE-2025-4672 - Offsprout Page Builder Plugin
The Offsprout Page Builder plugin for WordPress is vulnerable to Privilege Escalation due to improper authorization placed on the permission_callback() function in versions 2.2.1 to 2.15.2. This makes it possible for authenticated attackers, with Contributor-level access and above, to read, create, update or delete any user meta, including flipping their own wp_capabilities to administrator and fully escalate their privileges.
PLUGIN
Offsprout Page Builder
CVE-2025-4672
Risk Score
Threat Entry
Updated 2025-06-02
CVE-2025-4103 - Wp Geometa Plugin
The WP-GeoMeta plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the wp_ajax_wpgm_start_geojson_import() function in versions 0.3.4 to 0.3.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an administrator.
PLUGIN
Wp Geometa
CVE-2025-4103
Risk Score
Threat Entry
Updated 2025-05-30
CVE-2025-5190 - Browse As Plugin
The Browse As plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 0.2. This is due to incorrect authentication checking in the 'IS_BA_Browse_As::notice' function with the 'is_ba_original_user_COOKIEHASH' cookie value. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to log in as any existing user on the site, such as an administrator, if they have access to the user id.
PLUGIN
Browse As
CVE-2025-5190
Risk Score
Threat Entry
Updated 2025-05-28
CVE-2025-5287 - Inprosysmedia Likes Dislikes Post Plugin
The Likes and Dislikes Plugin plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Inprosysmedia Likes Dislikes Post
CVE-2025-5287
Risk Score
Threat Entry
Updated 2025-05-28
CVE-2025-4800 - Masterstudy Lms Pro Plugin
The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to a missing file type validation in the stm_lms_add_assignment_attachment function in all versions up to, and including, 4.7.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server, which may make remote code execution possible.
PLUGIN
Masterstudy Lms Pro
CVE-2025-4800
Risk Score
Threat Entry
Updated 2025-05-28
CVE-2025-5117 - Property Plugin
The Property plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the use of the property_package_user_role metadata in versions 1.0.5 to 1.0.6. This makes it possible for authenticated attackers, with Author‐level access and above, to elevate their privileges to that of an administrator by creating a package post whose property_package_user_role is set to administrator and then submitting the PayPal registration form.
PLUGIN
Property
CVE-2025-5117
Risk Score
Threat Entry
Updated 2025-07-11
CVE-2025-4336 - Emagicone Store Manager For Woocommerce Plugin
The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_file() function in all versions up to, and including, 1.2.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. This is only exploitable by unauthenticated attackers in default configurations where the the default password is left as 1:1, or where the attacker gains access to the credentials.
PLUGIN
Emagicone Store Manager For Woocommerce
CVE-2025-4336
Risk Score
Threat Entry
Updated 2025-05-23
CVE-2025-47670 - WordPress Core
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in miniOrange WordPress Social Login and Register allows PHP Local File Inclusion. This issue affects WordPress Social Login and Register: from n/a through 7.6.10.
CORE
WordPress Core
CVE-2025-47670
Risk Score
Threat Entry
Updated 2025-05-23
CVE-2025-31912 - Allows Php Local File Inclusion Theme
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in gavias Enzio - Responsive Business WordPress Theme allows PHP Local File Inclusion. This issue affects Enzio - Responsive Business WordPress Theme: from n/a through 1.1.8.
THEME
Allows Php Local File Inclusion
CVE-2025-31912
Risk Score
Threat Entry
Updated 2025-05-23
CVE-2025-31633 - Allows Php Local File Inclusion Theme
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in gavias Kiamo - Responsive Business Service WordPress Theme allows PHP Local File Inclusion. This issue affects Kiamo - Responsive Business Service WordPress Theme: from n/a through 1.3.3.
THEME
Allows Php Local File Inclusion
CVE-2025-31633
Risk Score
Threat Entry
Updated 2025-05-23
CVE-2025-1123 - Smtp Email And Logging Made By Solidwp Plugin
The Solid Mail – SMTP email and logging made by SolidWP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email Name, Subject, and Body in all versions up to, and including, 2.1.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Smtp Email And Logging Made By Solidwp
CVE-2025-1123
Risk Score
Threat Entry
Updated 2025-05-21
CVE-2025-4803 - Best Glossary Plugin
The Glossary by WPPedia – Best Glossary plugin for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3.0 via deserialization of untrusted input from the 'posttypes' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain is present…
PLUGIN
Best Glossary
CVE-2025-4803
Risk Score
Threat Entry
Updated 2025-06-12
CVE-2025-2929 - Order Delivery Date Plugin
The Order Delivery Date WordPress plugin before 12.4.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
PLUGIN
Order Delivery Date
CVE-2025-2929
Risk Score
Threat Entry
Updated 2025-05-21
CVE-2025-39372 - WordPress Core
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in elbisnero WordPress Events Calendar Registration & Tickets allows Reflected XSS.This issue affects WordPress Events Calendar Registration & Tickets: from n/a through 2.6.0.
CORE
WordPress Core
CVE-2025-39372
Risk Score
Threat Entry
Updated 2026-01-22
CVE-2025-39352 - Grand Restaurant Plugin
Missing Authorization vulnerability in ThemeGoods Grand Restaurant WordPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Grand Restaurant WordPress: from n/a through 7.0.
PLUGIN
Grand Restaurant
CVE-2025-39352
Risk Score
Threat Entry
Updated 2025-05-21
CVE-2025-39411 - Plugins Whatsapp Click To Chat
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Indie_Plugins WhatsApp Click to Chat Plugin for WordPress.This issue affects WhatsApp Click to Chat Plugin for WordPress: from n/a through 2.2.12.
PLUGIN
Plugins Whatsapp Click To Chat
CVE-2025-39411
Risk Score
Threat Entry
Updated 2025-05-21
CVE-2025-39409 - WordPress Core
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pressaholic WordPress Video Robot - The Ultimate Video Importer.This issue affects WordPress Video Robot - The Ultimate Video Importer: from n/a through 1.20.0.
CORE
WordPress Core
CVE-2025-39409
Risk Score
Threat Entry
Updated 2025-05-21
CVE-2025-47576 - Vulnerability In Bringthepixel Bimber Viral Magazine Theme
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Bringthepixel Bimber - Viral Magazine WordPress Theme.This issue affects Bimber - Viral Magazine WordPress Theme: from n/a through 9.2.5.
THEME
Vulnerability In Bringthepixel Bimber Viral Magazine
CVE-2025-47576
Risk Score
Threat Entry
Updated 2025-06-04
CVE-2024-13613 - Wise Chat Plugin
The Wise Chat plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.3.3 via the 'uploads' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads directory which can contain file attachments included in chat messages. The vulnerability was partially patched in version 3.3.3.
PLUGIN
Wise Chat
CVE-2024-13613
Risk Score