CVE-2025-57911

CVE-2025-57911 is tied to the WordPress Adverts Plugin – Adverts Click Tracker. The connected data indicate an authenticated, stored cross‑site scripting (XSS) vulnerability in Adverts

CVE-2025-25121 WordPress Theme Options Z Plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in shyammakwana Theme Options Z theme-options-z allows Cross Site Request Forgery.This issue affects Theme Options Z: from n/a through = 1.4...

CVE-2023-46210

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WebCource WC Captcha plugin = 1.4 versions...

Cross site scripting

deleteaccount.php in the Delete Account plugin 1.4 for MyBB allows XSS via the deletereason parameter...

Design/Logic Flaw

The Artezio Kanban Board plugin 1.4 revision 1914 for Atlassian Jira has XSS via the Board Name in a Create New Board action, related to an artezioboard/mainPage.jspa?kanbanId=7/kanban-view URI...

CVE-2001-1008

The CVE-2001-1008 entry concerns Java Plugin 1.4 for JRE 1.3, where signed applets can run even if the code-signing certificate is expired. This indicates a vulnerability in how the plugin handles expired certificates, allowing remote attackers to attempt unauthorized activity via an applet signe...