CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/02/25 3:15 p.m.•3 views

CVE-2025-26980

6.5CVSS0.00232EPSS

Cvelist•added 2025/02/25 2:17 p.m.•12 views

CVE-2025-26980 WordPress Wired Impact Volunteer Management plugin <= 2.5 - Stored Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00232EPSS

CVE•added 2025/02/25 2:17 p.m.•62 views

CVE-2025-26980

CVE-2025-26980 is a stored XSS vulnerability in Wired Impact Volunteer Management. The vulnerability affects the WordPress plugin in versions up to 2.5 and is described as an Authenticated (Contributor+) Stored Cross-Site Scripting issue. The CVE entry provides a CVSS 3.1 base score of 6.5 (Mediu...

6.5CVSS7.2AI score0.00232EPSS

Vulnrichment•added 2025/02/25 2:17 p.m.•7 views

CVE-2025-26980 WordPress Wired Impact Volunteer Management plugin <= 2.5 - Stored Cross Site Scripting (XSS) vulnerability

6.5CVSS8.6AI score0.00232EPSS

CNNVD•added 2025/02/25 12:0 a.m.•1 views

WordPress plugin Wired Impact Volunteer Management 跨站脚本漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site scripting vulnerability exists in WordPress plugin Wir...

6.5CVSS8.3AI score0.00232EPSS

Exploits0References2

Patchstack•added 2025/02/23 9:23 p.m.•2 views

WordPress Wired Impact Volunteer Management plugin <= 2.5 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis in WordPress Plugin Wired Impact Volunteer Management versions = 2.5...

6.5CVSS5.8AI score0.00232EPSS

Exploits0Affected Software1

RedhatCVE•added 2025/02/06 1:59 a.m.•5 views

CVE-2022-25652

Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking...

9CVSS7.1AI score0.00092EPSS

RedhatCVE•added 2025/02/05 2:13 p.m.•8 views

CVE-2020-11210

Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

9.3CVSS7.3AI score0.00039EPSS

RedhatCVE•added 2025/02/05 2:13 p.m.•6 views

CVE-2020-11191

Out of bound read occurs while processing crafted SDP due to lack of check of null string in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdrago...

9.4CVSS7AI score0.00239EPSS

RedhatCVE•added 2025/02/05 2:12 p.m.•7 views

CVE-2020-11263

An integer overflow due to improper check performed after the address and size passed are aligned in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

8.2CVSS7.4AI score0.00047EPSS

Vulnrichment•added 2024/10/30 1:35 p.m.•11 views

CVE-2024-28052

The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet gateway for homes and small offices while aiming to be easy to configure and operate. In addition to providing a WiFi access point, the device serves as a 4-port wired router and implements a variety of...

5.3CVSS6.9AI score0.00227EPSS

Exploits1References1

Cvelist•added 2024/10/30 1:35 p.m.•17 views

CVE-2024-28052

5.3CVSS0.00227EPSS

Exploits1References1

Wired Threat Level•added 2024/08/29 10:0 a.m.•77 views

Harmful 'Nudify' Websites Used Google, Apple, and Discord Sign-On Systems

Single sign-on systems from several Big Tech companies are being incorporated into deepfake generators, WIRED found. Discord and Apple have started to terminate some developers’ accounts...

6.9AI score

Wired Threat Level•added 2024/06/28 5:32 p.m.•4 views

Quora’s Chatbot Platform Poe Allows Users to Download Paywalled Articles on Demand

WIRED was able to download stories from publishers like The New York Times and The Atlantic using Poe’s Assistant bot. One expert calls it “prima facie copyright infringement,” which Quora disputes...

Wired Threat Level•added 2024/05/21 10:30 a.m.•9 views

Eventbrite Promoted Illegal Opioid Sales to People Searching for Addiction Recovery Help

A WIRED investigation found thousands of Eventbrite posts selling escort services and drugs like Xanax and oxycodone—some of which the company’s algorithm recommended alongside addiction recovery events...

Wired Threat Level•added 2024/04/12 6:25 p.m.•13 views

Change Healthcare Faces Another Ransomware Threat—and It Looks Credible

Change Healthcare ransomware hackers already received a $22 million payment. Now a second group is demanding money, and it has sent WIRED samples of what they claim is the company's stolen data...

Wired Threat Level•added 2024/04/09 8:21 p.m.•6 views

Section 702: The Future of the Biggest US Spy Program Hangs in the Balance

The US Congress will this week decide the fate of Section 702, a major surveillance program that will soon expire if lawmakers do not act. WIRED is tracking the major developments as they unfold...