CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2025/12/31 11:5 a.m.•1 views

CVE-2025-68977

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in designthemes DesignThemes Portfolio Addon designthemes-portfolio-addon allows DOM-Based XSS.This issue affects DesignThemes Portfolio Addon: from n/a through = 1.5...

6.5CVSS6.4AI score0.00024EPSS

Exploits0References1

EUVD•added 2025/12/30 12:30 p.m.•1 views

EUVD-2025-205758

6.1CVSS5.9AI score0.00024EPSS

Exploits0References2

NVD•added 2025/12/30 11:15 a.m.•1 views

CVE-2025-68977

6.5CVSS0.00024EPSS

Exploits0References1

Vulnrichment•added 2025/12/30 10:47 a.m.•1 views

CVE-2025-68977 WordPress DesignThemes Portfolio Addon plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability

6.5CVSS6AI score0.00024EPSS

Exploits0References1

CVE•added 2025/12/30 10:47 a.m.•4 views

CVE-2025-68977

CVE-2025-68977 affects DesignThemes Portfolio Addon (designthemes-portfolio-addon) with a Stored Cross-Site Scripting vulnerability in versions up to 1.5. The Wordfence entry confirms an authenticated (Contributor+) context for exploitation, indicating the issue requires user credentials to trigg...

6.5CVSS6AI score0.00024EPSS

Exploits0References1

Cvelist•added 2025/12/30 10:47 a.m.•21 views

CVE-2025-68977 WordPress DesignThemes Portfolio Addon plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00024EPSS

Exploits0References1

CNNVD•added 2025/12/30 12:0 a.m.•1 views

WordPress plugin DesignThemes Portfolio Addon 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

6.5CVSS5.7AI score0.00024EPSS

Exploits0References1