Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-03-12 CVE-2025-2205 The GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice – CCPA, DSGVO, RGPD plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.15.6 due to insufficient input sanitization and output escaping.
network
high complexity
CWE-79
4.4
4.4
2025-03-12 CVE-2025-2220 Key Management Errors vulnerability in Odysseyautomation Odyssey CMS
A vulnerability was found in Odyssey CMS up to 10.34.
local
low complexity
odysseyautomation CWE-320
7.8
7.8
2025-03-12 CVE-2025-2218 Incorrect Privilege Assignment vulnerability in Lovecards
A vulnerability has been found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical.
network
low complexity
lovecards CWE-266
critical
 9.8
9.8
2025-03-12 CVE-2025-2219 Unrestricted Upload of File with Dangerous Type vulnerability in Lovecards
A vulnerability was found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical.
network
low complexity
lovecards CWE-434
critical
 9.8
9.8
2025-03-12 CVE-2025-2215 A vulnerability classified as critical was found in Doufox up to 0.2.0.
network
low complexity
CWE-22
4.7
4.7
2025-03-12 CVE-2025-2216 Unrestricted Upload of File with Dangerous Type vulnerability in Zzskzy Warehouse Refinement Management System 1.3
A vulnerability, which was classified as critical, has been found in zzskzy Warehouse Refinement Management System 1.3.
network
low complexity
zzskzy CWE-434
critical
 9.8
9.8
2025-03-12 CVE-2025-2217 Injection vulnerability in Zzskzy Warehouse Refinement Management System 1.3
A vulnerability, which was classified as critical, was found in zzskzy Warehouse Refinement Management System 1.3.
network
low complexity
zzskzy CWE-74
critical
 9.8
9.8
2025-03-11 CVE-2025-2212 A vulnerability was found in Castlenet CBW383G2N up to 20250301.
network
low complexity
CWE-94
2.4
2.4
2025-03-11 CVE-2025-2213 A vulnerability was found in Castlenet CBW383G2N up to 20250301.
network
low complexity
CWE-94
2.4
2.4
2025-03-11 CVE-2025-1707 The Review Schema plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.2.4 via post meta.
network
low complexity
CWE-98
8.8
8.8