Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-04-04 CVE-2025-3215 A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0 and classified as critical.
network
low complexity
CWE-74
6.3
6.3
2025-04-04 CVE-2024-13898 The Simple Banner – Easily add multiple Banners/Bars/Notifications/Announcements to the top or bottom of your website plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.5 due to insufficient input sanitization and output escaping.
network
high complexity
CWE-79
4.4
4.4
2025-04-04 CVE-2025-2836 The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘payment_method’ parameter in all versions up to, and including, 6.0.4.3 due to insufficient input sanitization and output escaping.
network
low complexity
CWE-79
6.4
6.4
2025-04-04 CVE-2025-3214 A vulnerability has been found in JFinal CMS up to 5.2.4 and classified as problematic.
network
low complexity
CWE-22
4.3
4.3
2025-04-04 CVE-2025-3209 A vulnerability was found in code-projects Patient Record Management System 1.0.
network
low complexity
CWE-74
6.3
6.3
2025-04-04 CVE-2025-25001 Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
network
low complexity
CWE-79
4.3
4.3
2025-04-03 CVE-2025-3169 A vulnerability was found in Projeqtor up to 12.0.2.
network
high complexity
CWE-434
5.0
5.0
2025-04-03 CVE-2025-3165 A vulnerability classified as critical has been found in thu-pacman chitu 0.1.0.
local
low complexity
CWE-502
5.3
5.3
2025-04-03 CVE-2025-32050 A flaw was found in libsoup.
network
high complexity
CWE-127
5.9
5.9
2025-04-03 CVE-2025-32051 A flaw was found in libsoup.
network
high complexity
CWE-754
5.9
5.9