CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-Site Request Forgery CSRF vulnerability in Venugopal Comment Date and Gravatar remover remove-date-and-gravatar-under-comment allows Cross Site Request Forgery.This issue affects Comment Date and Gravatar remover: from n/a through = 1.0...

8.8CVSS7.2AI score0.00134EPSS

Exploits0References1

NVD•added 2025/03/11 9:15 p.m.•4 views

CVE-2025-28862

8.8CVSS0.00134EPSS

Exploits0References1

OSV•added 2025/03/11 9:15 p.m.•0 views

CVE-2025-28862

Cross-Site Request Forgery CSRF vulnerability in Venugopal Comment Date and Gravatar remover allows Cross Site Request Forgery. This issue affects Comment Date and Gravatar remover: from n/a through 1.0...

8.8CVSS7.3AI score0.00134EPSS

Exploits0References1

CVE•added 2025/03/11 9:0 p.m.•54 views

CVE-2025-28862

CVE-2025-28862 is a CSRF vulnerability in the WordPress plugin “Comment Date and Gravatar remover” affecting versions from n/a through 1.0. The description specifies a cross-site request forgery issue in this plugin; connected sources corroborate the affected software and context. The documents d...

8.8CVSS7.2AI score0.00134EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/02/09 10:18 a.m.•4 views

CVE-2025-25075

Cross-Site Request Forgery CSRF vulnerability in Venugopal Show notice or message on admin area show-notice-or-message-on-admin-area allows Stored XSS.This issue affects Show notice or message on admin area: from n/a through = 2.0...

7.1CVSS7.2AI score0.00082EPSS

Exploits0References1

NVD•added 2025/02/07 10:15 a.m.•3 views

CVE-2025-25075

7.1CVSS0.00082EPSS

Exploits0References1

Cvelist•added 2025/02/07 10:11 a.m.•17 views

CVE-2025-25075 WordPress Show notice or message on admin area plugin <= 2.0 - CSRF to Stored XSS vulnerability

7.1CVSS0.00082EPSS

Exploits0References1

Vulnrichment•added 2025/02/07 10:11 a.m.•6 views

CVE-2025-25075 WordPress Show notice or message on admin area plugin <= 2.0 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Venugopal Show notice or message on admin area allows Stored XSS. This issue affects Show notice or message on admin area: from n/a through 2.0...

7.1CVSS6.8AI score0.00082EPSS

Exploits0References1

CVE•added 2025/02/07 10:11 a.m.•48 views

CVE-2025-25075

CVE-2025-25075 affects the WordPress plugin Show notice or message on admin area (

7.1CVSS7.2AI score0.00082EPSS

Exploits0References1

Positive Technologies•added 2025/02/07 12:0 a.m.•1 views

PT-2025-5914 · Unknown · Venugopal Show Notice/Message On Admin Area

Name of the Vulnerable Software and Affected Versions: Venugopal Show notice or message on admin area versions n/a through 2.0 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS in the Venugopal Show notice or message on admin area. This vulnerability...

7.1CVSS9.1AI score0.00082EPSS

Exploits0References5

RedhatCVE•added 2025/02/05 12:25 a.m.•5 views

CVE-2024-31086

Cross-Site Request Forgery CSRF vulnerability in Venugopal Change default login logo,url and title allows Cross-Site Scripting XSS.This issue affects Change default login logo,url and title: from n/a through 2.0...

7.1CVSS8.5AI score0.00089EPSS

Exploits0References1

NVD•added 2024/04/15 8:15 a.m.•10 views

CVE-2024-31086

7.1CVSS6.7AI score0.00089EPSS

Exploits0References1

CVE•added 2024/04/15 7:46 a.m.•61 views

CVE-2024-31086

CVE-2024-31086 is a CSRF-to-XSS vulnerability in the WordPress plugin “Change default login logo-url-and-title” affecting versions up to 2.0. The issue arises from a CSRF flaw that can lead to XSS on login page customization. No vendor-specific remediation or patch details are provided in the con...

7.1CVSS8.5AI score0.00089EPSS

Exploits0References1

NVD•added 2023/10/06 3:15 p.m.•18 views

CVE-2023-41650

Cross-Site Request Forgery CSRF vulnerability in Venugopal Remove/hide Author, Date, Category Like Entry-Meta plugin = 2.1 versions...

8.8CVSS5.8AI score0.00092EPSS

Exploits0References1