Vulnerabilities

DATE	CVE	VULNERABILITY TITLE	RISK
2025-03-11	CVE-2025-28870	Cross-site Scripting vulnerability in Amocrm 1.1 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in amocrm amoCRM WebForm allows DOM-Based XSS. network low complexity amocrm CWE-79	5.4
2025-03-11	CVE-2025-28871	Cross-site Scripting vulnerability in Jwpegram Block Spam BY Math Reloaded Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jwpegram Block Spam By Math Reloaded allows Stored XSS. network low complexity jwpegram CWE-79	4.8
2025-03-11	CVE-2025-28872	Missing Authorization vulnerability in Jwpegram Block Spam BY Math Reloaded Missing Authorization vulnerability in jwpegram Block Spam By Math Reloaded allows Accessing Functionality Not Properly Constrained by ACLs. network low complexity jwpegram CWE-862 critical	9.8
2025-03-11	CVE-2025-28874	Authorization Bypass Through User-Controlled Key vulnerability in Shanebp BP Email Assign Templates Authorization Bypass Through User-Controlled Key vulnerability in shanebp BP Email Assign Templates allows Exploiting Incorrectly Configured Access Control Security Levels. network low complexity shanebp CWE-639	4.9
2025-03-11	CVE-2025-28875	Cross-site Scripting vulnerability in Shanebp BP Email Assign Templates Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in shanebp BP Email Assign Templates allows Stored XSS. network low complexity shanebp CWE-79	4.8
2025-03-11	CVE-2025-28876	Cross-Site Request Forgery (CSRF) vulnerability in Skrill Cross-Site Request Forgery (CSRF) vulnerability in Skrill_Team Skrill Official allows Cross Site Request Forgery. network low complexity skrill CWE-352	8.8
2025-03-11	CVE-2025-28878	Cross-site Scripting vulnerability in Willbrubaker Awesome Surveys Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Will Brubaker Awesome Surveys allows Stored XSS. network low complexity willbrubaker CWE-79	4.8
2025-03-11	CVE-2025-28879	Cross-site Scripting vulnerability in Aumsrini BEE Layer Slider 1.0/1.1 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in aumsrini Bee Layer Slider allows Stored XSS. network low complexity aumsrini CWE-79	5.4
2025-03-11	CVE-2025-2208	A vulnerability, which was classified as problematic, has been found in aitangbao springboot-manager 3.0. network low complexity CWE-94	2.4
2025-03-11	CVE-2025-2206	A vulnerability classified as problematic has been found in aitangbao springboot-manager 3.0. network low complexity CWE-94	2.4

Vulnerabilities {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities"}]}

Vulnerabilities