Lucene search
+L

CVE-2025-3472

🗓️ 26 Apr 2025 00:47:15Reported by redhat.comType 
redhatcve
 redhatcve
🔗 access.redhat.com👁 10 Views

Ocean Extra plugin for WordPress allows arbitrary shortcode execution due to improper value validation.

Related
Refs
ReporterTitlePublishedViews
Family
circl
CVE-2025-3472
22 Apr 202512:03
circl
cnnvd
WordPress plugin Ocean Extra 代码注入漏洞
22 Apr 202500:00
cnnvd
cve
CVE-2025-3472
22 Apr 202511:12
cve
cvelist
CVE-2025-3472 Ocean Extra <= 2.4.6 - Unauthenticated Arbitrary Shortcode Execution
22 Apr 202511:12
cvelist
euvd
EUVD-2025-12293
3 Oct 202520:07
euvd
nuclei
Ocean Extra <= 2.4.6 - Unauthenticated Shortcode Execution
15 Jul 202604:32
nuclei
nvd
CVE-2025-3472
22 Apr 202512:15
nvd
osv
CVE-2025-3472
22 Apr 202512:15
osv
patchstack
WordPress Ocean Extra plugin <= 2.4.6 - Unauthenticated Arbitrary Shortcode Execution vulnerability
22 Apr 202502:05
patchstack
ptsecurity
PT-2025-17522
22 Apr 202500:00
ptsecurity
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

27 Mar 2026 08:43Current
7.7High risk
Vulners AI Score7.7
CVSS 3.16.5 - 9.8
EPSS0.01852
SSVC
10