CVE-2025-25355

creationtimestamp| type| source ---|---|--- 2025-02-13 15:50:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113997370317784729 2025-02-13 16:17:15+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li33m4djcv2d 2025-02-13 18:50:31+00:00| seen|...

CVE-2025-26558

creationtimestamp| type| source ---|---|--- 2025-02-13 14:17:06+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li2uvaqrz72g 2025-02-13 14:26:00+00:00| seen| https://infosec.exchange/users/cve/statuses/113997038213697231 2025-02-13 15:12:24+00:00| seen|...

CVE-2025-26545

Cross-Site Request Forgery CSRF vulnerability in shisuh Related Posts Line-up-Exactly by Milliard related-posts-line-up-exactry-by-milliard allows Stored XSS.This issue affects Related Posts Line-up-Exactly by Milliard: from n/a through = 0.0.22...

CVE-2025-26549

creationtimestamp| type| source ---|---|--- 2025-02-13 14:10:59+00:00| seen| https://infosec.exchange/users/cve/statuses/113996979167159469 2025-02-13 14:16:56+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li2uuxagqx2g 2025-02-13 15:12:47+00:00| seen|...

CVE-2025-26545 WordPress Related Posts Line-up-Exactly by Milliard plugin <= 0.0.22 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in shisuh Related Posts Line-up-Exactly by Milliard related-posts-line-up-exactry-by-milliard allows Stored XSS.This issue affects Related Posts Line-up-Exactly by Milliard: from n/a through = 0.0.22...

CVE-2025-26545

CVE-2025-26545 affects the WordPress plugin Related Posts Line-up-Exactly by Milliard (versions ≤ 0.0.22). The entry documents a CSRF vulnerability that enables a Stored XSS condition. The issue is triggered when an authenticated user performs a request, allowing injected script code to be stored...

CVE-2025-1094

creationtimestamp| type| source ---|---|--- 2025-02-13 13:06:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113996724606453819 2025-02-13 13:15:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li2rgyzyqz2z 2025-02-13 14:34:40+00:00| seen|...

CVE-2024-13182

creationtimestamp| type| source ---|---|--- 2025-02-13 12:56:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113996684417836846 2025-02-13 13:15:23+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li2rgvq6iq2a 2025-02-13 14:34:39+00:00| seen|...

WordPress Related Posts Line-up-Exactly by Milliard plugin <= 0.0.22 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Related Posts Line-up-Exactly by Milliard versions = 0.0.22...

CVE-2025-1283

creationtimestamp| type| source ---|---|--- 2025-02-13 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-18 2025-02-13 21:21:13+00:00| seen| https://infosec.exchange/users/cve/statuses/113998670914984780 2025-02-13 22:15:47+00:00| seen|...

CVE-2025-0814

creationtimestamp| type| source ---|---|--- 2025-02-13 07:15:34+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li25dij7sa2a 2025-02-13 10:09:04+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4224 2025-02-13 10:30:28+00:00| seen|...

CVE-2025-0661

The DethemeKit For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.36 via the duplicatepost function due to insufficient restrictions on which posts can be duplicated. This makes it possible for authenticated attackers, with...

CVE-2025-0661 DethemeKit For Elementor <= 2.1.8 - Authenticated (Contributor+) Protected Post Disclosure

The DethemeKit For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.36 via the duplicatepost function due to insufficient restrictions on which posts can be duplicated. This makes it possible for authenticated attackers, with...

CVE-2024-13770

The Puzzles | WP Magazine / Review with Store WordPress Theme + RTL theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.2.4 via deserialization of untrusted input 'viewmoreposts' AJAX action. This makes it possible for unauthenticated attackers to...

CVE-2025-25286

creationtimestamp| type| source ---|---|--- 2025-02-13 02:48:41+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113994296257127308 2025-02-13 03:00:57+00:00| seen| Telegram/r090prh8PzjJEh682vcQnlDcJfJK4dwz44titdcQaapqPXQ 2025-02-13 04:25:09+00:00| seen|...

WordPress plugin DethemeKit For Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin Rank Math SEO 访问控制错误漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An access control error...

PT-2025-6797 · WordPress · Dethemekit For Elementor

Name of the Vulnerable Software and Affected Versions: DethemeKit For Elementor plugin for WordPress versions up to, and including, 2.36 Description: The issue allows authenticated attackers with Contributor-level access and above to extract data from password protected, private, draft, or...

CVE-2023-43758

creationtimestamp| type| source ---|---|--- 2025-02-12 21:43:06+00:00| seen| https://infosec.exchange/users/cve/statuses/113993094672306726 2025-02-12 22:16:12+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhz76zs6cm2p 2025-02-12 22:49:19+00:00| seen|...

WordPress DethemeKit For Elementor plugin <= 2.1.8 - Authenticated (Contributor+) Protected Post Disclosure vulnerability

Authenticated Contributor+ Protected Post Disclosure vulnerability discovered by Webbernaut in WordPress Plugin DethemeKit For Elementor versions = 2.1.8...