Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-05-09 CVE-2025-3794 The WPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the start_timestamp parameter in all versions up to, and including, 1.9.5 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
5.4
2025-05-09 CVE-2025-4492 Injection vulnerability in Campcodes Online Food Ordering System 1.0
A vulnerability, which was classified as critical, has been found in Campcodes Online Food Ordering System 1.0.
network
low complexity
campcodes CWE-74
critical
9.8
2025-05-09 CVE-2025-4494 A vulnerability, which was classified as critical, was found in JAdmin-JAVA JAdmin 1.0.
network
low complexity
CWE-287
7.3
2025-05-09 CVE-2025-4489 Injection vulnerability in Campcodes Online Food Ordering System 1.0
A vulnerability was found in Campcodes Online Food Ordering System 1.0.
network
low complexity
campcodes CWE-74
critical
9.8
2025-05-09 CVE-2025-4490 Injection vulnerability in Campcodes Online Food Ordering System 1.0
A vulnerability classified as critical has been found in Campcodes Online Food Ordering System 1.0.
network
low complexity
campcodes CWE-74
critical
9.8
2025-05-09 CVE-2025-4491 Injection vulnerability in Campcodes Online Food Ordering System 1.0
A vulnerability classified as critical was found in Campcodes Online Food Ordering System 1.0.
network
low complexity
campcodes CWE-74
critical
9.8
2025-05-09 CVE-2025-4486 Unspecified vulnerability in Adrianmercurio GYM Management System 1.0
A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical.
network
low complexity
adrianmercurio
critical
9.8
2025-05-09 CVE-2025-4487 Unspecified vulnerability in Adrianmercurio GYM Management System 1.0
A vulnerability was found in itsourcecode Gym Management System 1.0.
network
low complexity
adrianmercurio
critical
9.8
2025-05-09 CVE-2025-4488 Injection vulnerability in Adrianmercurio GYM Management System 1.0
A vulnerability was found in itsourcecode Gym Management System 1.0.
network
low complexity
adrianmercurio CWE-74
critical
9.8
2025-05-09 CVE-2025-4484 Injection vulnerability in Adrianmercurio GYM Management System 1.0
A vulnerability, which was classified as critical, was found in itsourcecode Gym Management System 1.0.
network
low complexity
adrianmercurio CWE-74
critical
9.8