Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total10,866
Critical0
High0
Medium10,866
Reset
Showing 3541-3560 of 10866 records
Threat Entry Updated 2025-05-06

CVE-2025-3874 - Wordpress Simple Paypal Shopping Cart Plugin

The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.3 due to lack of randomization of a user controlled key. This makes it possible for unauthenticated attackers to access customer shopping carts and edit product links, add or delete products, and discover coupon codes.

PLUGIN Wordpress Simple Paypal Shopping Cart

CVE-2025-3874

MEDIUM CVSS 6.5 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-06

CVE-2025-3890 - Wordpress Simple Paypal Shopping Cart Plugin

The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp_cart_button' shortcode in all versions up to, and including, 5.1.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Wordpress Simple Paypal Shopping Cart

CVE-2025-3890

MEDIUM CVSS 6.4 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-06

CVE-2025-3889 - Wordpress Simple Paypal Shopping Cart Plugin

The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.3 via the 'process_payment_data' due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to change the quantity of a product to a negative number, which subtracts the product cost from the total order cost. The attack will only work with Manual Checkout mode, as PayPal and Stripe will not process payments for a negative quantity.

PLUGIN Wordpress Simple Paypal Shopping Cart

CVE-2025-3889

MEDIUM CVSS 5.3 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-02

CVE-2025-1529 - Am Lottieplayer Plugin

The AM LottiePlayer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via uploaded lottie files in all versions up to, and including, 3.5.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Am Lottieplayer

CVE-2025-1529

MEDIUM CVSS 6.4 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-02

CVE-2025-4100 - Nautic Pages Plugin

The Nautic Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'np_marinetraffic_map' shortcode in all versions up to, and including, 2.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Nautic Pages

CVE-2025-4100

MEDIUM CVSS 6.4 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-02

CVE-2025-3521 - Wps Team Plugin

The Team Members – Best WordPress Team Plugin with Team Slider, Team Showcase & Team Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Social Link icons in all versions up to, and including, 3.4.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Wps Team

CVE-2025-3521

MEDIUM CVSS 6.4 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-07

CVE-2025-3504 - Before 4 Plugin

The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

PLUGIN Before 4

CVE-2025-3504

MEDIUM CVSS 4.8 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-07

CVE-2025-3503 - Before 4 Plugin

The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

PLUGIN Before 4

CVE-2025-3503

MEDIUM CVSS 4.8 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-07

CVE-2025-3502 - Before 4 Plugin

The WP Maps WordPress plugin before 4.7.2 does not sanitise and escape some of its Map settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

PLUGIN Before 4

CVE-2025-3502

MEDIUM CVSS 4.8 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-07

CVE-2024-13381 - Calculated Fields Form Plugin

The Calculated Fields Form WordPress plugin before 5.2.62 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

PLUGIN Calculated Fields Form

CVE-2024-13381

MEDIUM CVSS 4.8 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-19

CVE-2025-4099 - List Children Plugin

The List Children plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'list_children' shortcode in all versions up to, and including, 2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN List Children

CVE-2025-4099

MEDIUM CVSS 6.4 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-19

CVE-2024-13845 - Gravity Forms Webhooks Plugin

The Gravity Forms WebHooks plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.6.0 via the 'process_feed' method of the GF_Webhooks class This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

PLUGIN Gravity Forms Webhooks

CVE-2024-13845

MEDIUM CVSS 5.5 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-12

CVE-2025-2168 - Ultimate Store Kit Plugin

The Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.4.1. This is due to missing or incorrect nonce validation on the dismiss() function. This makes it possible for unauthenticated attackers to set arbitrary user meta values to `1` which can be leveraged to lock and administrator out of their site via a forged request granted they can trick a site administrator into performing an…

PLUGIN Ultimate Store Kit

CVE-2025-2168

MEDIUM CVSS 4.3 2025-05-01
Open Full Technical Breakdown
Threat Entry Updated 2025-05-02

CVE-2025-2890 - Tagdiv Opt In Builder Plugin

The tagDiv Opt-In Builder plugin for WordPress is vulnerable to time-based SQL Injection via the ‘subscriptionCouponId’ parameter in all versions up to, and including, 1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

PLUGIN Tagdiv Opt In Builder

CVE-2025-2890

MEDIUM CVSS 6.5 2025-04-30
Open Full Technical Breakdown
Threat Entry Updated 2025-05-02

CVE-2025-3953 - Most Popular Privacy Friendly Analytics Plugin

The WP Statistics – The Most Popular Privacy-Friendly Analytics Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'optionUpdater' function in all versions up to, and including, 14.13.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary plugin settings.

PLUGIN Most Popular Privacy Friendly Analytics

CVE-2025-3953

MEDIUM CVSS 6.5 2025-04-30
Open Full Technical Breakdown
Threat Entry Updated 2025-05-09

CVE-2025-3471 - Before 1 Plugin

The SureForms WordPress plugin before 1.4.4 does not have proper authorisation check when updating its settings via the REST API, which could allow Contributor and above roles to perform such action

PLUGIN Before 1

CVE-2025-3471

MEDIUM CVSS 4.9 2025-04-30
Open Full Technical Breakdown
Threat Entry Updated 2025-05-06

CVE-2025-3452 - Secupress Plugin

The SecuPress Free — WordPress Security plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'secupress_reinstall_plugins_admin_ajax_cb' function in all versions up to, and including, 2.3.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to install arbitrary plugins.

PLUGIN Secupress

CVE-2025-3452

MEDIUM CVSS 4.3 2025-04-29
Open Full Technical Breakdown
Threat Entry Updated 2025-05-06

CVE-2025-2893 - Gutenverse Plugin

The Gutenverse – Ultimate Block Addons and Page Builder for Site Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's countdown Block in all versions up to, and including, 2.2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

PLUGIN Gutenverse

CVE-2025-2893

MEDIUM CVSS 6.4 2025-04-29
Open Full Technical Breakdown
Threat Entry Updated 2025-05-14

CVE-2024-13688 - Before 7 Plugin

The Admin and Site Enhancements (ASE) WordPress plugin before 7.6.10 uses a hardcoded password in its Password Protection feature, allowing attacker to bypass the protection offered via a crafted request

PLUGIN Before 7

CVE-2024-13688

MEDIUM CVSS 5.3 2025-04-28
Open Full Technical Breakdown
Threat Entry Updated 2025-04-29

CVE-2024-13812 - The Anps Theme Plugin

The The Anps Theme plugin plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.1.1. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.

PLUGIN The Anps Theme

CVE-2024-13812

MEDIUM CVSS 6.5 2025-04-26
Open Full Technical Breakdown
Scroll to top