VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-06-07
CVE-2025-5839
A vulnerability, which was classified as critical, has been found in Tenda AC9 15.03.02.13.
network
low complexity
CWE-120
8.8
8.8
2025-06-07
CVE-2025-5840
A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0.
network
low complexity
CWE-434
7.3
7.3
2025-06-07
CVE-2025-5838
A vulnerability classified as critical was found in PHPGurukul Employee Record Management System 1.3.
network
low complexity
CWE-74
6.3
6.3
2025-06-07
CVE-2025-5836
A vulnerability was found in Tenda AC9 15.03.02.13.
network
low complexity
CWE-74
6.3
6.3
2025-06-07
CVE-2025-5837
A vulnerability classified as critical has been found in PHPGurukul Employee Record Management System 1.3.
network
low complexity
CWE-74
6.3
6.3
2025-06-07
CVE-2024-9993
The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eael_event_details_text parameter of Event Calendar Widget in all versions up to, and including, 6.1.12 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
6.4
2025-06-07
CVE-2024-9994
The Essential Addons for Elementor – Best Elementor Addon, Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the eael_pricing_item_tooltip_content parameter of the Pricing Table Widget in all versions up to, and including, 6.1.12 due to insufficient input sanitization and output escaping on user supplied attributes.
network
low complexity
CWE-79
6.4
6.4
2025-06-07
CVE-2025-5528
The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateor_mastodon_share parameter in all versions up to, and including, 3.3.75 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.1
6.1
2025-06-07
CVE-2025-5568
The WpEvently plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in all versions up to, and including, 4.4.2 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
6.4
2025-06-07
CVE-2025-5303
The LTL Freight Quotes – Freightview Edition, LTL Freight Quotes – Daylight Edition and LTL Freight Quotes – Day & Ross Edition plugins for WordPress are vulnerable to Stored Cross-Site Scripting via the expiry_date parameter in all versions up to, and including, 1.0.11, 2.2.6 and 2.1.10 respectively, due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
7.2
7.2
«
1
(current)
2
3
4
5
...
17181
17182
»
Next