Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-28939 | 8.5 (v3.1) | WordPress WP Google Calendar Manager plugin <= 2.1 - S… |
EuroCizia |
WP Google Calendar Manager |
2025-03-26T14:24:25.810Z | 2026-04-28T16:11:51.268Z |
| cve-2025-28937 | 5.9 (v3.1) | WordPress Lava Ajax Search plugin <= 1.1.9 - Cross Sit… |
lavacode |
Lava Ajax Search |
2025-03-11T21:01:15.978Z | 2026-04-28T16:11:51.258Z |
| cve-2025-28936 | 5.9 (v3.1) | WordPress Lunar plugin <= 1.3.0 - Cross Site Scripting… |
sakurapixel |
Lunar |
2025-03-11T21:01:15.254Z | 2026-04-28T16:11:51.224Z |
| cve-2025-28934 | 7.1 (v3.1) | WordPress Simple Post Series plugin <= 2.4.4 - Reflect… |
chaozh |
Simple Post Series |
2025-03-26T14:24:25.448Z | 2026-04-28T16:11:51.150Z |
| cve-2025-28938 | 4.3 (v3.1) | WordPress WP Performance Pack plugin <= 2.5.3 - Broken… |
Bjoern |
WP Performance Pack |
2025-03-11T21:01:16.712Z | 2026-04-28T16:11:51.094Z |
| cve-2025-28924 | 7.1 (v3.1) | WordPress ZenphotoPress plugin <= 1.8 - Reflected Cros… |
Simbul |
ZenphotoPress |
2025-03-26T14:24:25.089Z | 2026-04-28T16:11:51.015Z |
| cve-2025-28935 | 7.1 (v3.1) | WordPress Fancybox Plus plugin <= 1.0.1 - Reflected Cr… |
puzich |
Fancybox Plus |
2025-03-26T14:24:25.657Z | 2026-04-28T16:11:50.932Z |
| cve-2025-28923 | 7.1 (v3.1) | WordPress No Disposable Email plugin <= 2.5.1 - CSRF t… |
philippe |
No Disposable Email |
2025-03-11T21:01:04.293Z | 2026-04-28T16:11:50.926Z |
| cve-2025-28932 | 7.1 (v3.1) | WordPress Insert Code plugin <= 2.4 - CSRF to Stored X… |
BCS Website Solutions |
Insert Code |
2025-03-11T21:01:10.425Z | 2026-04-28T16:11:50.770Z |
| cve-2025-28933 | 7.1 (v3.1) | WordPress MaxA/B plugin <= 2.2.2 - CSRF to Stored XSS … |
maxfoundry |
MaxA/B |
2025-03-11T21:01:14.544Z | 2026-04-28T16:11:50.768Z |
| cve-2025-28919 | 6.5 (v3.1) | WordPress Easy Image Display plugin <= 1.2.5 - Cross S… |
Shellbot |
Easy Image Display |
2025-03-11T21:01:02.084Z | 2026-04-28T16:11:50.752Z |
| cve-2025-28930 | 6.5 (v3.1) | WordPress List Mixcloud plugin <= 1.4 - Cross Site Scr… |
Rodolphe MOULIN |
List Mixcloud |
2025-03-11T21:01:08.050Z | 2026-04-28T16:11:50.746Z |
| cve-2025-28926 | 5.9 (v3.1) | WordPress Post Read Time plugin <= 1.2.6 - Stored Cros… |
popeating |
Post Read Time |
2025-03-11T21:01:05.749Z | 2026-04-28T16:11:50.743Z |
| cve-2025-28918 | 6.5 (v3.1) | WordPress Featured Image Thumbnail Grid plugin <= 6.8 … |
A. Jones |
Featured Image Thumbnail Grid |
2025-03-11T21:01:01.313Z | 2026-04-28T16:11:50.742Z |
| cve-2025-28928 | 7.1 (v3.1) | WordPress Are you robot google recaptcha for Wordpress… |
sureshdsk |
Are you robot google recaptcha for wordpress |
2025-03-26T14:24:25.274Z | 2026-04-28T16:11:50.741Z |
| cve-2025-28931 | 7.1 (v3.1) | WordPress WordPress Hashtags plugin <= 0.3.2 - CSRF to… |
DevriX |
Hashtags |
2025-03-11T21:01:09.666Z | 2026-04-28T16:11:50.740Z |
| cve-2025-28925 | 7.1 (v3.1) | WordPress WATI Chat and Notification plugin <= 1.1.2 … |
Hieu Nguyen |
WATI Chat and Notification |
2025-03-11T21:01:05.019Z | 2026-04-28T16:11:50.727Z |
| cve-2025-28927 | 4.3 (v3.1) | WordPress Display Template Name plugin <= 1.7.1 - Cros… |
A. Chappard |
Display Template Name |
2025-03-11T21:01:06.585Z | 2026-04-28T16:11:50.708Z |
| cve-2025-28921 | 7.1 (v3.1) | WordPress SpatialMatch IDX plugin <= 3.0.9 - Reflected… |
homejunction |
SpatialMatch IDX |
2025-03-26T14:24:24.915Z | 2026-04-28T16:11:50.707Z |
| cve-2025-28922 | 7.1 (v3.1) | WordPress Go To Top plugin <= 0.0.8 - CSRF to Stored X… |
Terence D. |
Go To Top |
2025-03-11T21:01:03.548Z | 2026-04-28T16:11:50.689Z |
| cve-2025-28916 | 9.8 (v3.1) | WordPress Docpro plugin <= 2.0.1 - Local File Inclusio… |
Rashid |
Docpro |
2025-03-26T14:24:24.574Z | 2026-04-28T16:11:50.672Z |
| cve-2025-28920 | 5.3 (v3.1) | WordPress Responsive Google Map plugin <= 3.1.5 - Brok… |
Jogesh |
Responsive Google Map |
2025-03-11T21:01:02.813Z | 2026-04-28T16:11:50.650Z |
| cve-2025-28917 | 7.1 (v3.1) | WordPress Custom Smilies plugin <= 2.9.2 - Cross Site … |
crazyloong |
Custom Smilies |
2025-03-26T14:24:24.733Z | 2026-04-28T16:11:50.646Z |
| cve-2025-28929 | 6.5 (v3.1) | WordPress Tabbed Login Widget plugin <= 1.1.2 - Cross … |
Vivek Marakana |
Tabbed Login Widget |
2025-03-11T21:01:07.282Z | 2026-04-28T16:11:50.629Z |
| cve-2025-28914 | 5.9 (v3.1) | WordPress wordpress login form to anywhere plugin <= 0… |
Ajay Sharma |
wordpress login form to anywhere |
2025-03-11T21:00:59.669Z | 2026-04-28T16:11:50.561Z |
| cve-2025-28915 | 9.1 (v3.1) | WordPress ThemeEgg ToolKit plugin <= 1.2.9 - Arbitrary… |
Theme Egg |
ThemeEgg ToolKit |
2025-03-11T21:01:00.395Z | 2026-04-28T16:11:50.559Z |
| cve-2025-28913 | 4.3 (v3.1) | WordPress WP Add Active Class To Menu Item plugin <=1.… |
Aftab Ali Muni |
WP Add Active Class To Menu Item |
2025-03-11T21:00:58.945Z | 2026-04-28T16:11:50.462Z |
| cve-2025-28912 | 4.3 (v3.1) | WordPress Custom Dashboard Page plugin <= 1.0 - Cross … |
Muntasir Rahman |
Custom Dashboard Page |
2025-03-11T21:00:58.237Z | 2026-04-28T16:11:50.402Z |
| cve-2025-28901 | 7.1 (v3.1) | WordPress Members page only for logged in users plugin… |
Naren |
Members page only for logged in users |
2025-03-11T21:00:52.403Z | 2026-04-28T16:11:50.394Z |
| cve-2025-28911 | 7.1 (v3.1) | WordPress Gravity 2 PDF plugin <= 3.1.3 - Reflected Cr… |
gravity2pdf |
Gravity 2 PDF |
2025-03-26T14:24:24.426Z | 2026-04-28T16:11:50.340Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-181 | Multiples vulnérabilités dans les produits VMware | 2014-04-15T00:00:00.000000 | 2014-04-15T00:00:00.000000 |
| certfr-2014-avi-180 | Vulnérabilité dans plusieurs produits F5 | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-179 | Vulnérabilité dans IBM AIX | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-178 | Vulnérabilité dans plusieurs produits Sophos | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-177 | Vulnérabilité dans plusieurs produits McAfee | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-176 | Multiples vulnérabilités dans VMWare vSphere | 2014-04-11T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-174 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-161 | Vulnérabilité dans plusieurs produits Cisco | 2014-04-09T00:00:00.000000 | 2014-04-11T00:00:00.000000 |
| certfr-2014-avi-175 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-173 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-172 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-171 | Vulnérabilité dans Juniper Junos | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-170 | Vulnérabilité dans WireShark | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-169 | Vulnérabilité dans plusieurs produits Blue Coat | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-168 | Multiples vulnérabilités dans Cisco ASA | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-167 | Vulnérabilité dans OpenVPN Access Server | 2014-04-10T00:00:00.000000 | 2014-04-10T00:00:00.000000 |
| certfr-2014-avi-166 | Multiples vulnérabilités dans WordPress | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-165 | Vulnérabilité dans Citrix VDI-in-a-Box | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-164 | Multiples vulnérabilités dans Google Chrome | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-163 | Multiples vulnérabilités dans Adobe Flash | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-162 | Vulnérabilité dans plusieurs produits Juniper | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-160 | Vulnérabilité dans Microsoft Publisher | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-159 | Vulnérabilité dans Microsoft Windows | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-158 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-157 | Multiples vulnérabilités dans Microsoft Office | 2014-04-09T00:00:00.000000 | 2014-04-09T00:00:00.000000 |
| certfr-2014-avi-156 | Vulnérabilité dans OpenSSL | 2014-04-08T00:00:00.000000 | 2014-04-08T00:00:00.000000 |
| certfr-2014-avi-155 | Multiples vulnérabilités dans Apple Safari | 2014-04-02T00:00:00.000000 | 2014-04-02T00:00:00.000000 |
| certfr-2014-avi-154 | Multiples vulnérabilités dans EMC VPLEX GeoSynchrony | 2014-04-01T00:00:00.000000 | 2014-04-01T00:00:00.000000 |
| certfr-2014-avi-153 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-152 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |