Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-02-19 CVE-2025-1441 The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7.1007.
network
low complexity
CWE-352
6.1
6.1
2025-02-19 CVE-2024-11582 The Subscribe2 – Form, Email Subscribers & Newsletters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ip parameter in all versions up to, and including, 10.43 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
7.2
7.2
2025-02-19 CVE-2024-13443 The Easypromos Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Easypromos shortcode in all versions up to, and including, 1.3.8 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
6.4
2025-02-19 CVE-2025-22622 Age Verification for your checkout page.
network
low complexity
CWE-79
4.3
4.3
2025-02-19 CVE-2025-1448 A vulnerability was found in Synway SMG Gateway Management Software up to 20250204.
network
low complexity
CWE-74
7.3
7.3
2025-02-19 CVE-2025-1447 A vulnerability was found in kasuganosoras Pigeon 1.0.177.
network
low complexity
CWE-918
4.3
4.3
2025-02-19 CVE-2024-13508 The Booking Package plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the locale parameter in all versions up to, and including, 1.6.72 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.1
6.1
2025-02-18 CVE-2024-13743 The Wonder Video Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wonderplugin_video shortcode in all versions up to, and including, 2.2 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
6.4
2025-02-18 CVE-2024-45775 A flaw was found in grub2 where the grub_extcmd_dispatcher() function calls grub_arg_list_alloc() to allocate memory for the grub's argument list.
local
high complexity
CWE-252
5.2
5.2
2025-02-18 CVE-2024-45776 When reading the language .mo file in grub_mofile_open(), grub2 fails to verify an integer overflow when allocating its internal buffer.
local
low complexity
CWE-787
6.7
6.7