Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-31453 | 6.5 (v3.1) | WordPress YouTube SimpleGallery plugin <= 2.0.6 - Cros… |
Stian Andreassen |
YouTube SimpleGallery |
2025-03-28T11:54:12.005Z | 2026-04-28T16:12:07.307Z |
| cve-2025-31449 | 7.1 (v3.1) | WordPress The Visitor Counter plugin <= 1.4.3 - Cross … |
EricH |
The Visitor Counter |
2025-03-28T11:54:14.548Z | 2026-04-28T16:12:07.294Z |
| cve-2025-31450 | 6.5 (v3.1) | WordPress Toggle Box plugin <= 1.6 - Cross Site Script… |
phantom.omaga |
Toggle Box |
2025-03-28T11:54:13.920Z | 2026-04-28T16:12:07.289Z |
| cve-2025-31442 | 7.1 (v3.1) | WordPress Search engine keywords highlighter plugin <=… |
e1tekoap42 |
Search engine keywords highlighter |
2025-04-03T13:27:09.883Z | 2026-04-28T16:12:07.241Z |
| cve-2025-31446 | 7.1 (v3.1) | WordPress WP Cleaner plugin <= 1.1.5 - Reflected Cross… |
jiangmiao |
WP Cleaner |
2025-04-01T20:58:10.295Z | 2026-04-28T16:12:07.238Z |
| cve-2025-31448 | 5.4 (v3.1) | WordPress Simple Trackback Disabler plugin <= 1.4 - Cr… |
misteraon |
Simple Trackback Disabler |
2025-03-28T11:54:15.160Z | 2026-04-28T16:12:07.216Z |
| cve-2025-31441 | 7.1 (v3.1) | WordPress WordPress Galleria plugin <= 1.4 - Reflected… |
S |
WordPress Galleria |
2025-04-01T20:58:09.953Z | 2026-04-28T16:12:07.213Z |
| cve-2025-31436 | 7.1 (v3.1) | WordPress Blubrry PowerPress Podcasting plugin MultiSi… |
Angelo Mandato |
Blubrry PowerPress Podcasting plugin MultiSite add-on |
2025-04-03T13:27:09.662Z | 2026-04-28T16:12:07.212Z |
| cve-2025-31443 | 7.1 (v3.1) | WordPress KK I Like It plugin <= 1.7.5.3 - CSRF to Sto… |
Krzysztof Furtak |
KK I Like It |
2025-03-28T11:54:17.030Z | 2026-04-28T16:12:07.207Z |
| cve-2025-31439 | 5.4 (v3.1) | WordPress Browser Caching with .htaccess 1.2.1 - Cross… |
tobias_.MerZ |
Browser Caching with .htaccess |
2025-03-28T11:54:18.359Z | 2026-04-28T16:12:07.194Z |
| cve-2025-31445 | 7.1 (v3.1) | WordPress Pages Order plugin <= 1.1.3 - Reflected Cros… |
Sed Lex |
Pages Order |
2025-04-01T20:58:10.085Z | 2026-04-28T16:12:07.162Z |
| cve-2025-31437 | 5.9 (v3.1) | WordPress WP-OGP plugin <= 1.0.5 - Cross Site Scriptin… |
David Miller |
WP-OGP |
2025-03-28T11:54:19.620Z | 2026-04-28T16:12:07.144Z |
| cve-2025-31438 | 4.3 (v3.1) | WordPress WP Supersized plugin <= 3.1.6 - Cross Site R… |
Benoit De Boeck |
WP Supersized |
2025-03-28T11:54:19.014Z | 2026-04-28T16:12:07.135Z |
| cve-2025-31444 | 7.1 (v3.1) | WordPress ShowTime Slideshow plugin <= 1.6 - Cross Sit… |
youtag |
ShowTime Slideshow |
2025-03-28T11:54:16.432Z | 2026-04-28T16:12:07.132Z |
| cve-2025-31440 | 7.1 (v3.1) | WordPress Terms of Use plugin <= 2.0 - Cross Site Requ… |
Strategy11 Team |
Terms of Use |
2025-03-28T11:54:17.694Z | 2026-04-28T16:12:07.132Z |
| cve-2025-31434 | 6.5 (v3.1) | WordPress FormLift for Infusionsoft Web Forms plugin <… |
Adrian Tobey |
FormLift for Infusionsoft Web Forms |
2025-03-28T11:54:20.883Z | 2026-04-28T16:12:07.104Z |
| cve-2025-31418 | 7.1 (v3.1) | WordPress Gravel theme <= 1.6 - Reflected Cross Site S… |
noonnoo |
Gravel |
2025-04-04T13:20:48.054Z | 2026-04-28T16:12:07.091Z |
| cve-2025-31435 | 7.1 (v3.1) | WordPress Microblog Poster plugin <= 2.1.6 - Cross Sit… |
Efficient Scripts |
Microblog Poster |
2025-03-28T11:54:20.247Z | 2026-04-28T16:12:07.063Z |
| cve-2025-31432 | 7.5 (v3.1) | WordPress Pop-Up Chop Chop plugin <= 2.1.7 - Local Fil… |
Chop Chop |
Pop-Up Chop Chop |
2025-03-28T11:54:22.227Z | 2026-04-28T16:12:07.021Z |
| cve-2025-31417 | 4.3 (v3.1) | WordPress WP Docs plugin < 2.2.7 - Broken Access Contr… |
Fahad Mahmood |
WP Docs |
2025-03-31T06:06:30.692Z | 2026-04-28T16:12:06.969Z |
| cve-2025-31433 | 6.5 (v3.1) | WordPress Magic Embeds plugin <= 3.1.2 - Cross Site Sc… |
Miguel Sirvent |
Magic Embeds |
2025-03-28T11:54:21.570Z | 2026-04-28T16:12:06.959Z |
| cve-2025-31411 | 5.9 (v3.1) | WordPress Linet ERP-Woocommerce Integration plugin <= … |
aribhour |
Linet ERP-Woocommerce Integration |
2025-04-10T10:16:12.191Z | 2026-04-28T16:12:06.930Z |
| cve-2025-31428 | 7.1 (v3.1) | WordPress HYDRO theme <= 2.8 - Reflected Cross Site Sc… |
BuddhaThemes |
HYDRO |
2025-06-27T11:52:37.516Z | 2026-04-28T16:12:06.923Z |
| cve-2025-31430 | 9.8 (v3.1) | WordPress The Business <= 1.6.1 - PHP Object Injection… |
themeton |
The Business |
2025-05-23T12:44:06.320Z | 2026-04-28T16:12:06.910Z |
| cve-2025-31431 | 7.1 (v3.1) | WordPress WP Bookmarks plugin <= 1.1 - Reflected Cross… |
conlabz GmbH |
WP Bookmarks |
2025-04-01T20:58:09.812Z | 2026-04-28T16:12:06.909Z |
| cve-2025-31427 | 7.1 (v3.1) | WordPress Invico - WordPress Consulting Business Theme… |
designthemes |
Invico - WordPress Consulting Business Theme |
2025-07-16T11:28:05.193Z | 2026-04-28T16:12:06.903Z |
| cve-2025-31413 | 4.3 (v3.1) | WordPress Element Pack Elementor Addons plugin <= 8.3.… |
bdthemes |
Element Pack Elementor Addons |
2026-01-22T16:51:38.938Z | 2026-04-28T16:12:06.898Z |
| cve-2025-31426 | 7.1 (v3.1) | WordPress Sticky Radio Player plugin <= 3.4 - Reflecte… |
LambertGroup |
Sticky Radio Player |
2025-06-09T15:56:37.872Z | 2026-04-28T16:12:06.885Z |
| cve-2025-31424 | 9.3 (v3.1) | WordPress WP Lead Capturing Pages plugin < 2.6 - SQL I… |
kamleshyadav |
WP Lead Capturing Pages |
2025-06-09T15:56:38.948Z | 2026-04-28T16:12:06.876Z |
| cve-2025-31423 | 9.8 (v3.1) | WordPress Umberto theme <= 1.2.8 - PHP Object Injectio… |
AncoraThemes |
Umberto |
2025-05-23T12:44:06.784Z | 2026-04-28T16:12:06.875Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2015-avi-297 | Multiples vulnérabilités dans Microsoft Office | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-296 | Vulnérabilité dans Microsoft Netlogon | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-295 | Vulnérabilité dans le composant Microsoft Graphics | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-294 | Multiples vulnérabilités dans le noyau Windows | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-293 | Vulnérabilité dans le service d'installation de Windows | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-292 | Multiples vulnérabilités dans Microsoft Windows OLE | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-291 | Vulnérabilité dans Microsoft Remote Procedure Call | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-290 | Vulnérabilité dans le pilote de police Adobe Type Manager | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-289 | Multiples vulnérabilités dans Microsoft SQL Server | 2015-07-15T00:00:00.000000 | 2015-07-15T00:00:00.000000 |
| certfr-2015-avi-288 | Multiples vulnérabilités dans Moodle | 2015-07-13T00:00:00.000000 | 2015-07-13T00:00:00.000000 |
| certfr-2015-avi-287 | Vulnérabilité dans VMware Workstation | 2015-07-10T00:00:00.000000 | 2015-07-10T00:00:00.000000 |
| certfr-2015-avi-286 | Multiples vulnérabilités dans les produits Juniper | 2015-07-09T00:00:00.000000 | 2015-07-09T00:00:00.000000 |
| certfr-2015-avi-285 | Vulnérabilité dans OpenSSL | 2015-07-09T00:00:00.000000 | 2015-07-09T00:00:00.000000 |
| certfr-2015-avi-284 | Multiples vulnérabilités dans Adobe Flash Player | 2015-07-08T00:00:00.000000 | 2015-07-08T00:00:00.000000 |
| certfr-2015-avi-283 | Multiples vulnérabilités dans le noyau Linux Ubuntu | 2015-07-08T00:00:00.000000 | 2015-07-08T00:00:00.000000 |
| certfr-2015-avi-282 | Multiples vulnérabilités dans OpenSSH | 2015-07-07T00:00:00.000000 | 2015-07-07T00:00:00.000000 |
| certfr-2015-avi-281 | Vulnérabilité dans MariaDB | 2015-07-07T00:00:00.000000 | 2015-07-07T00:00:00.000000 |
| certfr-2015-avi-280 | Multiples vulnérabilités dans Schneider Electric Wonderware System Platform | 2015-07-06T00:00:00.000000 | 2015-07-06T00:00:00.000000 |
| certfr-2015-avi-279 | Multiples vulnérabilités dans les produits Mozilla | 2015-07-03T00:00:00.000000 | 2015-07-03T00:00:00.000000 |
| certfr-2015-avi-278 | Vulnérabilité dans Cisco Unified Communications Domain Manager | 2015-07-03T00:00:00.000000 | 2015-07-03T00:00:00.000000 |
| certfr-2015-avi-277 | Vulnérabilité dans BlueCoat Malware Analysis Appliance | 2015-07-01T00:00:00.000000 | 2015-07-01T00:00:00.000000 |
| certfr-2015-avi-276 | Multiples vulnérabilités dans Apple Safari | 2015-07-01T00:00:00.000000 | 2015-07-01T00:00:00.000000 |
| certfr-2015-avi-275 | Multiples vulnérabilités dans Apple iTunes | 2015-07-01T00:00:00.000000 | 2015-07-01T00:00:00.000000 |
| certfr-2015-avi-274 | Multiples vulnérabilités dans Apple Quicktime | 2015-07-01T00:00:00.000000 | 2015-07-01T00:00:00.000000 |
| certfr-2015-avi-273 | Multiples vulnérabilités dans Apple OSX | 2015-07-01T00:00:00.000000 | 2015-07-01T00:00:00.000000 |
| certfr-2015-avi-272 | Multiples vulnérabilités dans Apple iOS | 2015-07-01T00:00:00.000000 | 2015-07-01T00:00:00.000000 |
| certfr-2015-avi-271 | Multiples vulnérabilités dans Apple Mac EFI | 2015-07-01T00:00:00.000000 | 2015-07-01T00:00:00.000000 |
| certfr-2015-avi-270 | Vulnérabilité dans Schneider SCADA SAGE Remote Terminal Units | 2015-06-30T00:00:00.000000 | 2015-06-30T00:00:00.000000 |
| certfr-2015-avi-269 | Vulnérabilité dans le noyau Linux de Fedora | 2015-06-30T00:00:00.000000 | 2015-06-30T00:00:00.000000 |
| certfr-2015-avi-268 | Multiples vulnérabilités dans les produits Citrix Netscaler | 2015-06-30T00:00:00.000000 | 2015-06-30T00:00:00.000000 |