Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-01-29 CVE-2025-0353 The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 4.1.0 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
6.4
2025-01-29 CVE-2024-13696 The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wishlist_name’ parameter in all versions up to, and including, 1.2.25 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
7.2
7.2
2025-01-29 CVE-2025-0804 The ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via link titles in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
6.4
2025-01-29 CVE-2025-0806 Code Injection vulnerability in Anisha JOB Recruitment 1.0
A vulnerability was found in code-projects Job Recruitment 1.0.
network
low complexity
anisha CWE-94
6.1
6.1
2025-01-29 CVE-2023-33838 Use of a One-Way Hash without a Salt vulnerability in IBM Security Verify Governance 10.0.2
IBM Security Verify Governance 10.0.2 Identity Manager uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but the product does not also use a salt as part of the input.
network
low complexity
ibm CWE-759
4.9
4.9
2025-01-29 CVE-2025-0795 A vulnerability was found in ESAFENET CDG V5.
network
low complexity
CWE-94
3.5
3.5
2025-01-29 CVE-2025-0797 A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux.
local
low complexity
CWE-276
3.3
3.3
2025-01-29 CVE-2025-0798 A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux.
network
high complexity
CWE-77
8.1
8.1
2025-01-29 CVE-2025-0800 Cross-site Scripting vulnerability in Argie Online Courseware 1.0
A vulnerability classified as problematic has been found in SourceCodester Online Courseware 1.0.
network
low complexity
argie CWE-79
4.8
4.8
2025-01-29 CVE-2025-0802 Unspecified vulnerability in Mayurik Best Employee Management System 1.0
A vulnerability classified as critical was found in SourceCodester Best Employee Management System 1.0.
network
low complexity
mayurik
8.1
8.1