WordPress WP Attractive Donations System - Easy Stripe & Paypal donations plugin <= 1.25 - Arbitrary Content Deletion vulnerability

WordPress WP Attractive Donations System - Easy Stripe & Paypal donations plugin = 1.25 - Arbitrary Content Deletion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin WP Attractive Donations System - Easy Stripe & Paypal donations versions = 1.25...

CVE-2025-11867

The Bg Book Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bookauthor post meta, rendered through the bookauthor shortcode, in all versions up to, and including, 1.25. This is due to the plugin not properly escaping the meta value before output. This makes it...

WordPress Advanced Google reCAPTCHA plugin <= 1.25 - Brute Force Protection IP Unblock vulnerability

Brute Force Protection IP Unblock vulnerability discovered by Max Boll b0lli in WordPress Plugin Advanced Google reCAPTCHA versions = 1.25...

CloudBees Jenkins Multijob plugin security bypass vulnerability

CloudBees Jenkins is a Java-based continuous integration tool from CloudBees, Inc. that is used to monitor ongoing software releases/testing projects and timed tasks.Multijob is used as one of the options for defining complex and hierarchical job structures in Jenkins. A security bypass...

CSL DualCom GPRS CS2300-R SPT Man-in-the-Middle Attack Vulnerability

The CSL DualCom GPRS CS2300-R SPT is an alarm signaling board from CSL DualCom, UK, which provides a communication link between the burglar alarm and the monitoring center, allowing signals to be sent to the monitoring center when the alarm goes off, via the mobile network, ordinary phone lines o...