Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-03-25 CVE-2025-0845 The DesignThemes Core Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcodes in versions up to, and including, 4.8 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
2025-03-25 CVE-2025-2224 The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the 'parse_query' function in all versions up to, and including, 8.2.
network
low complexity
CWE-862
5.3
2025-03-25 CVE-2025-2737 A vulnerability was found in PHPGurukul Old Age Home Management System 1.0.
network
low complexity
CWE-74
7.3
2025-03-25 CVE-2025-2738 A vulnerability was found in PHPGurukul Old Age Home Management System 1.0.
network
low complexity
CWE-74
7.3
2025-03-25 CVE-2025-2739 A vulnerability was found in PHPGurukul Old Age Home Management System 1.0.
network
low complexity
CWE-74
7.3
2025-03-25 CVE-2025-2733 A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13.
network
low complexity
CWE-77
6.3
2025-03-25 CVE-2025-2734 A vulnerability, which was classified as critical, was found in PHPGurukul Old Age Home Management System 1.0.
network
low complexity
CWE-74
7.3
2025-03-25 CVE-2025-2735 A vulnerability has been found in PHPGurukul Old Age Home Management System 1.0 and classified as critical.
network
low complexity
CWE-74
7.3
2025-03-25 CVE-2025-2736 A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical.
network
low complexity
CWE-74
7.3
2025-03-25 CVE-2025-2731 A vulnerability was found in H3C Magic NX15, Magic NX30 Pro, Magic NX400, Magic R3010 and Magic BE18000 up to V100R014.
low complexity
8.0