Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-03 | CVE-2025-26970 | Unspecified vulnerability in Arktheme the ARK Improper Control of Generation of Code ('Code Injection') vulnerability in NotFound Ark Theme Core ark-core allows Code Injection.This issue affects Ark Theme Core: from n/a before 1.71.0. | 9.8 |
| 2025-03-03 | CVE-2025-26984 | Cross-site Scripting vulnerability in Cozyvision SMS Alert Order Notifications Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows Reflected XSS. | 6.1 |
| 2025-03-03 | CVE-2025-26988 | SQL Injection vulnerability in Cozyvision SMS Alert Order Notifications Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows SQL Injection. | 7.5 |
| 2025-03-03 | CVE-2025-26989 | Cross-site Scripting vulnerability in Softdiscover Zigaform Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in softdiscover Zigaform – Form Builder Lite allows Stored XSS. | 6.1 |
| 2025-03-03 | CVE-2025-26994 | Cross-site Scripting vulnerability in Softdiscover Zigaform Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in softdiscover Zigaform – Price Calculator & Cost Estimation Form Builder Lite allows Stored XSS. | 6.1 |
| 2025-03-03 | CVE-2025-27274 | Path Traversal: '.../...//' vulnerability in Axelkeller GPX Viewer Path Traversal vulnerability in NotFound GPX Viewer allows Path Traversal. | 4.9 |
| 2025-03-03 | CVE-2025-1869 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "username" parameter in admin/check_avalability.php. | 9.8 |
| 2025-03-03 | CVE-2025-1870 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "pagedescription" parameter in admin/aboutus.php. | 9.8 |
| 2025-03-03 | CVE-2025-1871 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "category" and "subcategory" parameters in admin/add-subcategory.php. | 9.8 |
| 2025-03-03 | CVE-2025-1872 | SQL Injection vulnerability in Mayurik Best Online News Portal 1.0 SQL injection vulnerability have been found in 101news affecting version 1.0 through the "sadminusername" parameter in admin/add-subadmins.php. | 9.8 |