PT-2025-4898 · Isnowfy · My-Related-Posts

Name of the Vulnerable Software and Affected Versions: isnowfy my-related-posts versions n/a through 1.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web applicatio...

PT-2025-5073 · Unknown · Copy Move Posts

Name of the Vulnerable Software and Affected Versions: Copy Move Posts versions n/a through 1.6 Description: The issue is related to a lack of authorization in Copy Move Posts, allowing the exploitation of incorrectly configured access control security levels. Recommendations: For versions n/a...

CVE-2024-57013

creationtimestamp| type| source ---|---|--- 2025-01-15 17:15:54+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfsbeb53ed2c 2025-01-15 18:24:35+00:00| seen| https://infosec.exchange/users/cR0w/statuses/113833769317315493 2025-01-15 19:18:55+00:00| seen|...

CVE-2025-22797

creationtimestamp| type| source ---|---|--- 2025-01-15 16:18:04+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfs64ua2562p 2025-01-15 16:58:04+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lfsaeaxymu2r 2025-01-15 17:38:04+00:00| seen|...

CVE-2025-22734

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Data443 Risk Mitigation, Inc. Posts Footer Manager intelly-posts-footer-manager allows Stored XSS.This issue affects Posts Footer Manager: from n/a through = 2.1.0...

CVE-2025-21083 Insufficient Input Validation on Post Props

Mattermost Mobile Apps versions =2.22.0 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...

CVE-2025-22734 WordPress Posts Footer Manager Plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Data443 Risk Mitigation, Inc. Posts Footer Manager intelly-posts-footer-manager allows Stored XSS.This issue affects Posts Footer Manager: from n/a through = 2.1.0...

CVE-2024-47002

creationtimestamp| type| source ---|---|--- 2025-01-15 15:04:53+00:00| seen| https://infosec.exchange/users/cve/statuses/113832984101239506 2025-01-15 15:10:33+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1763 2025-01-15 15:15:50+00:00| seen|...

CVE-2024-11848

creationtimestamp| type| source ---|---|--- 2025-01-15 12:16:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfrqmsfhfn2s 2025-01-15 12:22:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1736 2025-01-15 12:47:44+00:00| seen|...

CVE-2024-10775 Piotnet Addons For Elementor <= 2.4.32 - Authenticated (Contributor+) Post Disclosure

The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.4.32 via the 'pafe-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with...

CVE-2024-7595

creationtimestamp| type| source ---|---|--- 2025-01-15 07:52:57+00:00| seen| https://vulnerability.circl.lu/bundle/1589f952-6079-4a2c-b742-e8d947b50a39 2025-01-15 07:57:45+00:00| seen| https://social.circl.lu/users/circl/statuses/113831304477406737 2025-01-16 19:02:10+00:00|...

WordPress plugin Piotnet Addons For Elementor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin Posts Footer Manager 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...

PT-2025-4658 · Data443 · Data443 Posts Footer Manager

Name of the Vulnerable Software and Affected Versions: Data443 Posts Footer Manager versions n/a through 2.1.0 Description: The issue is related to improper neutralization of input during web page generation, which allows stored cross-site scripting XSS. This means that an attacker can inject...

PT-2025-1605 · WordPress · Piotnet Addons For Elementor

Name of the Vulnerable Software and Affected Versions: Piotnet Addons For Elementor plugin for WordPress versions up to, and including, 2.4.32 Description: The issue allows authenticated attackers with Contributor-level access and above to extract data from private or draft posts created by...

CVE-2025-23018

creationtimestamp| type| source ---|---|--- 2025-01-14 20:09:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1594 2025-01-14 20:16:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfq2yimjwk2c 2025-01-14 22:22:42+00:00| seen| https://t.me/cvedetector/15352...

CVE-2025-23019

creationtimestamp| type| source ---|---|--- 2025-01-14 20:08:55+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1592 2025-01-14 20:16:40+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfq2ylw5cs2r 2025-01-14 22:22:41+00:00| seen| https://t.me/cvedetector/15351...

CVE-2024-48856

creationtimestamp| type| source ---|---|--- 2025-01-14 19:09:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1568 2025-01-14 19:16:00+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpxm4727j2f 2025-01-14 19:28:56+00:00| seen|...

CVE-2025-21305

creationtimestamp| type| source ---|---|--- 2025-01-14 17:29:48+00:00| seen| https://www.thezdi.com/blog/2025/1/14/the-january-2025-security-update-review 2025-01-14 18:21:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpujsiwsz2r 2025-01-14 18:49:03+00:00| seen|...

CVE-2025-21400

creationtimestamp| type| source ---|---|--- 2025-01-14 17:29:48+00:00| seen| https://www.thezdi.com/blog/2025/1/14/the-january-2025-security-update-review 2025-02-11 18:08:38+00:00| seen| https://www.thezdi.com/blog/2025/2/11/the-february-2025-security-update-review 2025-02-11 18:18:22+00:00| see...