Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-05-09 CVE-2025-2253 The IMITHEMES Listing plugin is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.3.
network
low complexity
CWE-620
critical
 9.8
9.8
2025-05-09 CVE-2025-3455 The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'start_restore' function in all versions up to, and including, 2.2.
network
low complexity
CWE-434
8.8
8.8
2025-05-09 CVE-2025-3605 The Frontend Login and Registration Blocks plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.0.7.
network
low complexity
CWE-639
critical
 9.8
9.8
2025-05-09 CVE-2025-4467 Unspecified vulnerability in Senior-Walter Online Student Clearance System 1.0
A vulnerability was found in SourceCodester Online Student Clearance System 1.0.
network
low complexity
senior-walter
critical
 9.8
9.8
2025-05-09 CVE-2025-4468 Unrestricted Upload of File with Dangerous Type vulnerability in Senior-Walter Online Student Clearance System 1.0
A vulnerability was found in SourceCodester Online Student Clearance System 1.0.
network
low complexity
senior-walter CWE-434
critical
 9.8
9.8
2025-05-09 CVE-2025-4469 Unspecified vulnerability in Senior-Walter Online Student Clearance System 1.0
A vulnerability classified as problematic has been found in SourceCodester Online Student Clearance System 1.0.
network
low complexity
senior-walter
5.4
5.4
2025-05-09 CVE-2025-4470 Code Injection vulnerability in Senior-Walter Online Student Clearance System 1.0
A vulnerability classified as problematic was found in SourceCodester Online Student Clearance System 1.0.
network
low complexity
senior-walter CWE-94
5.4
5.4
2025-05-09 CVE-2025-4464 Unspecified vulnerability in Adrianmercurio GYM Management System 1.0
A vulnerability has been found in itsourcecode Gym Management System 1.0 and classified as critical.
network
low complexity
adrianmercurio
critical
 9.8
9.8
2025-05-09 CVE-2025-4465 Unspecified vulnerability in Adrianmercurio GYM Management System 1.0
A vulnerability was found in itsourcecode Gym Management System 1.0 and classified as critical.
network
low complexity
adrianmercurio
critical
 9.8
9.8
2025-05-09 CVE-2025-4466 Injection vulnerability in Adrianmercurio GYM Management System 1.0
A vulnerability was found in itsourcecode Gym Management System 1.0.
network
low complexity
adrianmercurio CWE-74
critical
 9.8
9.8