Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-03-13
CVE-2024-13359 - Product Input Fields For Woocommerce Plugin
The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the add_product_input_fields_to_order_item_meta() function in all versions up to, and including, 1.12.0. This may make it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. Please note that by default the plugin is only vulnerable to a double extension file upload attack, unless an administrators leaves the accepted file extensions field blank which can make .php file uploads…
PLUGIN
Product Input Fields For Woocommerce
CVE-2024-13359
Risk Score
Threat Entry
Updated 2025-03-13
CVE-2024-13882 - Aiomatic Plugin
The Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'aiomatic_generate_featured_image' function in all versions up to, and including, 2.3.8. This makes it possible for authenticated attackers, with Contributor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Aiomatic
CVE-2024-13882
Risk Score
Threat Entry
Updated 2025-03-13
CVE-2024-13908 - Smtp Plugin
The SMTP by BestWebSoft plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'save_options' function in all versions up to, and including, 1.1.9. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
PLUGIN
Smtp
CVE-2024-13908
Risk Score
Threat Entry
Updated 2025-03-13
CVE-2024-11087 - Social Login Plugin
The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) Pro Addon plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 200.3.9. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the username and the user does not have an already-existing account for the service returning the token.
PLUGIN
Social Login
CVE-2024-11087
Risk Score
Threat Entry
Updated 2025-03-12
CVE-2024-13890 - Allow Php Execute Plugin
The Allow PHP Execute plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 1.0. This is due to allowing PHP code to be entered by all users for whom unfiltered HTML is allowed. This makes it possible for authenticated attackers, with Editor-level access and above, to inject PHP code into posts and pages.
PLUGIN
Allow Php Execute
CVE-2024-13890
Risk Score
Threat Entry
Updated 2025-03-12
CVE-2024-13835 - Post Meta Data Manager Plugin
The Post Meta Data Manager plugin for WordPress is vulnerable to multisite privilege escalation in all versions up to, and including, 1.4.3. This is due to the plugin not properly verifying the existence of a multisite installation prior to allowing user meta to be added/modified. This makes it possible for authenticated attackers, with Administrator-level access and above, to gain elevated privileges on subsites that would otherwise be inaccessible.
PLUGIN
Post Meta Data Manager
CVE-2024-13835
Risk Score
Threat Entry
Updated 2025-05-21
CVE-2024-13668 - Wordpress Activity O Meter Plugin
The WordPress Activity O Meter WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admins.
PLUGIN
Wordpress Activity O Meter
CVE-2024-13668
Risk Score
Threat Entry
Updated 2025-03-13
CVE-2025-0959 - Eventer Plugin
The Eventer - WordPress Event & Booking Manager Plugin plugin for WordPress is vulnerable to SQL Injection via the reg_id parameter in all versions up to, and including, 3.9.9.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Eventer
CVE-2025-0959
Risk Score
Threat Entry
Updated 2025-03-13
CVE-2024-9658 - School Management System Plugin
The School Management System for Wordpress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 93.0.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email and password through the mj_smgt_update_user() and mj_smgt_add_admission() functions, along with a local file inclusion vulnerability. This makes it possible for authenticated attackers, with student-level access and above, to change arbitrary user's email addresses and passwords, including administrators, and leverage that to gain access to their account.…
PLUGIN
School Management System
CVE-2024-9658
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2024-12035 - Cs Framework Plugin
The CS Framework plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the cs_widget_file_delete() function in all versions up to, and including, 6.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).
PLUGIN
Cs Framework
CVE-2024-12035
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2024-12036 - Cs Framework Plugin
The CS Framework plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 6.9 via the get_widget_settings_json() function. This makes it possible for authenticated attackers, with subscriber-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
PLUGIN
Cs Framework
CVE-2024-12036
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2024-10804 - Woocommerce Plugin
The Ultimate Video Player WordPress & WooCommerce Plugin plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 10.0 via the content/downloader.php file. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information.
PLUGIN
Woocommerce
CVE-2024-10804
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2025-1309 - UiPress lite | Effortless custom dashboards, admin themes and pages
The UiPress lite | Effortless custom dashboards, admin themes and pages plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the uip_save_form_as_option() function in all versions up to, and including, 3.5.04. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to…
THEME
UiPress lite | Effortless custom dashboards, admin themes and pages
CVE-2025-1309
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2024-13906 - Customizable Image And Photo Galleries For Wordpress Plugin
The Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.7.3 via deserialization of untrusted input in the 'import_gallery_from_csv' function. This makes it possible for authenticated attackers, with Administrator-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain…
PLUGIN
Customizable Image And Photo Galleries For Wordpress
CVE-2024-13906
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2024-13655 - Flex Mag Responsive Wordpress News Theme
The Flex Mag - Responsive WordPress News Theme theme for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the propanel_of_ajax_callback() function in all versions up to, and including, 3.5.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary option values on the WordPress site. This can be leveraged to delete an option that would create an error on the site and deny service to legitimate users.
THEME
Flex Mag Responsive Wordpress News Theme
CVE-2024-13655
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2024-13320 - Curcy Woocommerce Multi Currency Currency Switcher Plugin
The CURCY - WooCommerce Multi Currency - Currency Switcher plugin for WordPress is vulnerable to SQL Injection via the 'wc_filter_price_meta[where]' parameter in all versions up to, and including, 2.3.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Curcy Woocommerce Multi Currency Currency Switcher
CVE-2024-13320
Risk Score
Threat Entry
Updated 2025-03-07
CVE-2025-0749 - Homey Theme
The Homey theme for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.4.3. This is due to the 'verification_id' value being set to empty, and the not empty check is missing in the dashboard user profile page. This makes it possible for unauthenticated attackers to log in to the first verified user.
THEME
Homey
CVE-2025-0749
Risk Score
Threat Entry
Updated 2025-03-05
CVE-2025-1702 - Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the 'search' parameter in all versions up to, and including, 2.10.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin
CVE-2025-1702
Risk Score
Threat Entry
Updated 2025-03-05
CVE-2024-13471 - Designthemes Core Features Plugin
The DesignThemes Core Features plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the dt_process_imported_file function in all versions up to, and including, 4.7. This makes it possible for unauthenticated attackers to read arbitrary files on the underlying operating system.
PLUGIN
Designthemes Core Features
CVE-2024-13471
Risk Score
Threat Entry
Updated 2025-03-05
CVE-2025-0956 - Woocommerce Recover Abandoned Cart Plugin
The WooCommerce Recover Abandoned Cart plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 24.3.0 via deserialization of untrusted input from the 'raccookie_guest_email' cookie. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain is present via an additional plugin or theme installed on the target…
PLUGIN
Woocommerce Recover Abandoned Cart
CVE-2025-0956
Risk Score