Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-06-04
CVE-2024-13793 - Multi Vendor Marketplace Woocommerce Theme
The Wolmart | Multi-Vendor Marketplace WooCommerce Theme theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.8.11. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
THEME
Multi Vendor Marketplace Woocommerce Theme
CVE-2024-13793
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-4104 - Frontend Dashboard Plugin
The Frontend Dashboard plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the fed_wp_ajax_fed_login_form_post() function in versions 1.0 to 2.2.6. This makes it possible for unauthenticated attackers to reset the administrator’s email and password, and elevate their privileges to that of an administrator.
PLUGIN
Frontend Dashboard
CVE-2025-4104
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-4171 - Display What Visitors Are Reading Plugin
The WZ Followed Posts – Display what visitors are reading plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wfp' shortcode in all versions up to, and including, 3.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Display What Visitors Are Reading
CVE-2025-4171
Risk Score
Threat Entry
Updated 2025-07-11
CVE-2024-12120 - Royal Elementor Addons And Templates Plugin
The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Countdown widget display_message_text parameter in all versions up to, and including, 1.7.1017 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Royal Elementor Addons And Templates
CVE-2024-12120
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3766 - Login Lockdown Plugin
The Login Lockdown & Protection plugin for WordPress is vulnerable to unauthorized nonce access due to a missing capability check on the ajax_run_tool function in all versions up to, and including, 2.11. This makes it possible for authenticated attackers, with Subscriber-level access and above, to obtain a valid nonce that can be used to generate a global unlock key, which can in turn be used to add arbitrary IP address to the plugin allowlist. This can only by exploited on new installations where the site administrator hasn't visited the loginlockdown…
PLUGIN
Login Lockdown
CVE-2025-3766
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-4335 - Woocommerce Multiple Addresses Plugin
The Woocommerce Multiple Addresses plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.7.1. This is due to insufficient restrictions on user meta that can be updated through the save_multiple_shipping_addresses() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to elevate their privileges to that of an administrator.
PLUGIN
Woocommerce Multiple Addresses
CVE-2025-4335
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-4220 - Xavins List Subpages Plugin
The Xavin's List Subpages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'xls' shortcode in all versions up to, and including, 1.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Xavins List Subpages
CVE-2025-4220
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-4055 - Multiple Post Type Order Plugin
The Multiple Post Type Order plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mpto' shortcode in all versions up to, and including, 1.10.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Multiple Post Type Order
CVE-2025-4055
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3921 - Peprodev Ups Plugin
The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handel_ajax_req() function in versions 1.9.1 to 7.5.2. This makes it possible for unauthenticated attackers to update arbitrary user's metadata which can be leveraged to block an administrator from accessing their site when wp_capabilities is set to 0.
PLUGIN
Peprodev Ups
CVE-2025-3921
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3853 - E Commerce Plugin
The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions 2.0.0 to 2.6.0 via the callback_generate_api_key() due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create valid API keys on behalf of other users.
PLUGIN
E Commerce
CVE-2025-3853
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3860 - Cardealerpress Plugin
The CarDealerPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘saleclass' parameter in all versions up to, and including, 6.7.2504.00 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Cardealerpress
CVE-2025-3860
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-4054 - A Better Search Plugin
The Relevanssi – A Better Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the highlights functionality in all versions up to, and including, 4.24.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page via the search results.
PLUGIN
A Better Search
CVE-2025-4054
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3924 - Peprodev Ups Plugin
The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to unauthorized access of data via its publicly exposed reset-password endpoint. The plugin looks up the 'valid_email' value based solely on a supplied username parameter, without verifying that the requester is associated with that user account. This allows unauthenticated attackers to enumerate email addresses for any user, including administrators.
PLUGIN
Peprodev Ups
CVE-2025-3924
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3844 - Peprodev Ups Plugin
The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to Authentication Bypass in versions 1.9.1 to 7.5.2. This is due to handel_ajax_req() function not having proper restrictions on the change_user_meta functionality that makes it possible to set a OTP code and subsequently log in with that OTP code. This makes it possible for unauthenticated attackers to login as other users on the site, including administrators.
PLUGIN
Peprodev Ups
CVE-2025-3844
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3852 - E Commerce Plugin
The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to privilege escalation via account takeover in versions 2.0.0 to 2.6.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email & password through the update() function. This makes it possible for authenticated attackers, with subscriber-level access and above, to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.
PLUGIN
E Commerce
CVE-2025-3852
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-2821 - Search Exclude Plugin
The Search Exclude plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the get_rest_permission function in all versions up to, and including, 2.4.9. This makes it possible for unauthenticated attackers to modify plugin settings, excluding content from search results.
PLUGIN
Search Exclude
CVE-2025-2821
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-3851 - Smartpay Plugin
The Download Manager and Payment Form WordPress Plugin – WP SmartPay plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions 1.1.0 to 2.7.13 via the show() function due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view other user's data like email address, name, and notes.
PLUGIN
Smartpay
CVE-2025-3851
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-0856 - Pgs Core Plugin
The PGS Core plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on multiple functions in all versions up to, and including, 5.8.0. This makes it possible for unauthenticated attackers to add, modify, or plugin options.
PLUGIN
Pgs Core
CVE-2025-0856
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-0855 - Pgs Core Plugin
The PGS Core plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.8.0 via deserialization of untrusted input in the 'import_header' function. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
PLUGIN
Pgs Core
CVE-2025-0855
Risk Score
Threat Entry
Updated 2025-05-07
CVE-2025-0853 - Pgs Core Plugin
The PGS Core plugin for WordPress is vulnerable to SQL Injection via the 'event' parameter in the 'save_header_builder' function in all versions up to, and including, 5.8.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Pgs Core
CVE-2025-0853
Risk Score