GHSA-37CP-FGQ5-7WC2

creationtimestamp| type| source ---|---|--- 2025-04-16 22:57:51+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12169 2025-04-16 23:34:02+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114350256396276490 2025-04-17 17:27:07+00:00| seen|...

CVE-2025-32856

creationtimestamp| type| source ---|---|--- 2025-04-16 18:44:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmxaptslt22a 2025-04-16 20:48:33+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114349605608981550 2025-04-16 21:55:10+00:00| seen|...

CVE-2025-32859

creationtimestamp| type| source ---|---|--- 2025-04-16 18:44:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmxapswj3t2z 2025-04-16 20:48:36+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114349605703951184 2025-04-16 21:55:12+00:00| seen|...

CVE-2025-31201

creationtimestamp| type| source ---|---|--- 2025-04-16 17:33:03+00:00| seen| https://infosec.exchange/users/applsec/statuses/114348836934305541 2025-04-16 17:33:04+00:00| seen| https://bsky.app/profile/applsec.bsky.social/post/3lmx4qr3utx2e 2025-04-16 18:18:24+00:00| seen|...

CVE-2025-31200

creationtimestamp| type| source ---|---|--- 2025-04-16 17:33:02+00:00| seen| https://infosec.exchange/users/applsec/statuses/114348836934305541 2025-04-16 17:33:04+00:00| seen| https://bsky.app/profile/applsec.bsky.social/post/3lmx4qr3utx2e 2025-04-16 18:18:24+00:00| seen|...

CVE-2025-9001

creationtimestamp| type| source ---|---|--- 2025-04-16 16:53:23+00:00| seen| at://did:web:em.vg/app.bsky.feed.post/3lmx2jrwssk23 2025-04-17 02:14:20+00:00| seen| https://bsky.app/profile/pmloik.bsky.social/post/3lmxzutzcrl2w 2025-04-18 02:12:38+00:00| seen|...

CVE-2025-39573

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in teastudio.pl WP Posts Carousel wp-posts-carousel allows Stored XSS.This issue affects WP Posts Carousel: from n/a through = 1.3.10...

CVE-2025-39549

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in whiletrue Most And Least Read Posts Widget most-and-least-read-posts-widget allows Stored XSS.This issue affects Most And Least Read Posts Widget: from n/a through = 2.5.20...

CVE-2025-39549

CVE-2025-39549 describes a Stored XSS vulnerability in the WordPress plugin Most And Least Read Posts Widget . Technical detail from sources confirms the issue affects versions “n/a through 2.5.20” and arises from improper input neutralization during web page generation. Exploitation details or o...

CVE-2025-39549 WordPress Most And Least Read Posts Widget plugin <= 2.5.20 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in whiletrue Most And Least Read Posts Widget most-and-least-read-posts-widget allows Stored XSS.This issue affects Most And Least Read Posts Widget: from n/a through = 2.5.20...

CVE-2025-39573 WordPress WP Posts Carousel <= 1.3.10 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in teastudio.pl WP Posts Carousel allows Stored XSS. This issue affects WP Posts Carousel: from n/a through 1.3.10...

CVE-2025-39573

CVE-2025-39573 affects the WordPress plugin WP Posts Carousel up to version 1.3.10, with a stored XSS flaw caused by improper input neutralization during web page generation. The vulnerability has been characterized with CVSS v3.1 base score 6.5 (Medium) by Patchstack/Wordfence assessments. Publi...

CVE-2018-16606

creationtimestamp| type| source ---|---|--- 2025-04-16 09:30:26+00:00| seen| https://bsky.app/profile/nimblenerd.social/post/3lmwbrptwnu2w 2025-04-17 21:02:24+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmzyvxkyi42a...

PT-2025-16601 · WordPress · Wp Posts Carousel

Name of the Vulnerable Software and Affected Versions: WP Posts Carousel versions 1.3.10 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stored XSS attacks. Recommendations: For WP...

WordPress plugin WP Posts Carousel 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site scripting...

WordPress plugin Most And Least Read Posts Widget 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin Most An...

CVE-2021-27289

creationtimestamp| type| source ---|---|--- 2025-04-15 18:44:02+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmuqalgmss2z 2025-04-15 21:37:56+00:00| seen| https://t.me/cvedetector/22992 2025-04-16 21:02:22+00:00| seen|...

CVE-2025-26743

creationtimestamp| type| source ---|---|--- 2025-04-15 12:38:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmu3tc5mms2g 2025-04-15 12:54:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11802 2025-04-15 15:02:35+00:00| seen|...

CVE-2025-3495

creationtimestamp| type| source ---|---|--- 2025-04-15 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-105-07 2025-04-16 03:55:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11985 2025-04-16 04:23:23+00:00| seen|...

CVE-2025-24797

creationtimestamp| type| source ---|---|--- 2025-04-14 23:53:47+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11732 2025-04-15 00:36:52+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114339178869394068 2025-04-15 02:38:09+00:00| seen|...