Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-22 | CVE-2025-46226 | Cross-site Scripting vulnerability in Mpl-Publisher Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ferranfg MPL-Publisher allows Stored XSS. | 5.4 |
| 2025-04-22 | CVE-2025-46227 | Cross-site Scripting vulnerability in Brechtvds Custom Related Posts Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brecht Custom Related Posts allows Stored XSS. | 5.4 |
| 2025-04-22 | CVE-2025-46228 | Cross-site Scripting vulnerability in Avecnous Event Post Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bastien Ho Event post allows DOM-Based XSS. | 5.4 |
| 2025-04-22 | CVE-2025-46229 | Cross-site Scripting vulnerability in Textmetrics Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Israpil Textmetrics allows Stored XSS. | 4.8 |
| 2025-04-22 | CVE-2025-46231 | Cross-Site Request Forgery (CSRF) vulnerability in Servit Affiliate-Toolkit Cross-Site Request Forgery (CSRF) vulnerability in SERVIT Software Solutions affiliate-toolkit allows Cross Site Request Forgery. | 8.8 |
| 2025-04-22 | CVE-2025-46232 | Missing Authorization vulnerability in Alttext ALT Text AI Missing Authorization vulnerability in alttextai Download Alt Text AI allows Exploiting Incorrectly Configured Access Control Security Levels. | 8.8 |
| 2025-04-22 | CVE-2025-46233 | Cross-site Scripting vulnerability in Sirv Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sirv CDN and Image Hosting Sirv allows Stored XSS. | 5.4 |
| 2025-04-22 | CVE-2025-46235 | Cross-site Scripting vulnerability in Sktthemes SKT Blocks Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sonalsinha21 SKT Blocks – Gutenberg based Page Builder allows Stored XSS. | 5.4 |
| 2025-04-22 | CVE-2025-46236 | Cross-site Scripting vulnerability in Ibericode Html Forms Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Link Software LLC HTML Forms allows Stored XSS. | 5.4 |
| 2025-04-22 | CVE-2025-46237 | Cross-site Scripting vulnerability in Ylefebvre Link Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yannick Lefebvre Link Library allows Stored XSS. | 5.4 |