Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-05-07
CVE-2025-2011 - Popup Builder By Depicter Plugin
The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL Injection via the ‘s' parameter in all versions up to, and including, 3.6.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Popup Builder By Depicter
CVE-2025-2011
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-2802 - Layoutboxx Plugin
The LayoutBoxx plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 0.3.1. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
PLUGIN
Layoutboxx
CVE-2025-2802
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3610 - Reales Wp Stpt Plugin
The Reales WP STPT plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.1.2. This is due to the plugin not properly validating a user's identity prior to updating their details like password. This makes it possible for authenticated attackers, with subscriber-level access and above, to change arbitrary user's passwords and email addresses, including administrators, and leverage that to gain access to their account. This can be combined with CVE-2025-3609 to achieve remote code execution as an originally unauthenticated user with…
PLUGIN
Reales Wp Stpt
CVE-2025-3610
Risk Score
Threat Entry
Updated 2025-05-05
CVE-2025-4279 - External Image Replace Plugin
The External image replace plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'external_image_replace_get_posts::replace_post' function in all versions up to, and including, 1.0.8. This makes it possible for authenticated attackers, with contributor-level and above permissions, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
External Image Replace
CVE-2025-4279
Risk Score
Threat Entry
Updated 2025-05-05
CVE-2024-13738 - Listing Wordpress Theme
The The Motors - Car Dealer, Rental & Listing WordPress theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.6.65. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes. *It is unclear exactly which version the issue was patched in from the changelog. Therefore, we used the latest version at the time of verification.
THEME
Listing Wordpress Theme
CVE-2024-13738
Risk Score
Threat Entry
Updated 2025-06-04
CVE-2025-4204 - Ultimate Wordpress Auction Plugin
The Ultimate Auction Pro plugin for WordPress is vulnerable to SQL Injection via the ‘auction_id’ parameter in all versions up to, and including, 1.5.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Ultimate Wordpress Auction
CVE-2025-4204
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2024-13418 - April Plugin
Multiple plugins and/or themes for WordPress are vulnerable to Arbitrary File Uploads due to a missing capability check on the ajaxUploadFonts() function in various versions. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files that can make remote code execution possible. This issue was escalated to Envato over two months from the date of this disclosure and the issue, while partially patched, is still vulnerable.
PLUGIN
April
CVE-2024-13418
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2024-13344 - Advance Seat Reservation Management For Woocommerce Plugin
The Advance Seat Reservation Management for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'profileId' parameter in all versions up to, and including, 3.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Advance Seat Reservation Management For Woocommerce
CVE-2024-13344
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2024-13322 - Ads Pro Plugin Multi Purpose Wordpress Advertising Manager
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to SQL Injection via the 'a_id' parameter in all versions up to, and including, 4.88 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Ads Pro Plugin Multi Purpose Wordpress Advertising Manager
CVE-2024-13322
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-4179 - Flynax Bridge Plugin
The Flynax Bridge plugin for WordPress is vulnerable to limited Privilege Escalation due to a missing capability check on the registerUser() function in all versions up to, and including, 2.2.0. This makes it possible for unauthenticated attackers to register new user accounts as authors.
PLUGIN
Flynax Bridge
CVE-2025-4179
Risk Score
Threat Entry
Updated 2025-05-19
CVE-2025-3952 - Projectopia Plugin
The Projectopia – WordPress Project Management plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the 'pto_remove_logo' function in all versions up to, and including, 5.1.16. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary option values on the WordPress site. This can be leveraged to delete an option that would create an error on the site and deny service to legitimate users.
PLUGIN
Projectopia
CVE-2025-3952
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-1305 - Newsblogger Plugin
The NewsBlogger theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.2.5.4. This is due to missing or incorrect nonce validation on the newsblogger_install_and_activate_plugin() function. This makes it possible for unauthenticated attackers to upload arbitrary files and achieve remote code execution via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
PLUGIN
Newsblogger
CVE-2025-1305
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-1304 - Newsblogger Plugin
The NewsBlogger theme for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the newsblogger_install_and_activate_plugin() function in all versions up to, and including, 0.2.5.1. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Newsblogger
CVE-2025-1304
Risk Score
Threat Entry
Updated 2025-05-12
CVE-2025-2816 - Page View Count Plugin
The Page View Count plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the yellow_message_dontshow() function in versions 2.8.0 to 2.8.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update option values to one on the WordPress site. This can be leveraged to update an option that would create an error on the site and deny service to legitimate users or be used to set some values to true…
PLUGIN
Page View Count
CVE-2025-2816
Risk Score
Threat Entry
Updated 2025-04-29
CVE-2025-2101 - Edumall Theme
The Edumall theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.4 via the 'template' parameter of the 'edumall_lazy_load_template' AJAX action. This makes it possible for unauthenticated attackers to include and execute arbitrary PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where PHP files can be uploaded and included.
THEME
Edumall
CVE-2025-2101
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-3914 - Aeropage Sync For Airtable Plugin
The Aeropage Sync for Airtable plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'aeropage_media_downloader' function in all versions up to, and including, 3.2.0. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Aeropage Sync For Airtable
CVE-2025-3914
Risk Score
Threat Entry
Updated 2025-04-29
CVE-2025-3906 - Integracao Entre Eduzz E Wc Powers Plugin
The Integração entre Eduzz e Woocommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wep_opcoes' function in all versions up to, and including, 1.7.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to edit the default registration role within the plugin's registration flow to Administrator, which allows any user to create an Administrator account.
PLUGIN
Integracao Entre Eduzz E Wc Powers
CVE-2025-3906
Risk Score
Threat Entry
Updated 2025-04-29
CVE-2025-3491 - Add Custom Page Template Plugin
The Add custom page template plugin for WordPress is vulnerable to PHP Code Injection leading to Remote Code Execution in all versions up to, and including, 2.0.1 via the 'acpt_validate_setting' function. This is due to insufficient sanitization of the 'template_name' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to execute code on the server.
PLUGIN
Add Custom Page Template
CVE-2025-3491
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2025-2105 - Jupiter X Core Plugin
The Jupiter X Core plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.8.11 via deserialization of untrusted input from the 'file' parameter of the 'raven_download_file' function. This makes it possible for attackers to inject a PHP Object through a PHAR file. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain is present via an additional plugin…
PLUGIN
Jupiter X Core
CVE-2025-2105
Risk Score
Threat Entry
Updated 2025-05-06
CVE-2024-13808 - Xpro Elementor Addons Pro Plugin
The Xpro Elementor Addons - Pro plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.4.9 via the custom PHP widget. This is due to their only being client side controls when determining who can access the widget. This makes it possible for authenticated attackers, with Contributor-level access and above, to execute code on the server.
PLUGIN
Xpro Elementor Addons Pro
CVE-2024-13808
Risk Score