Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-28925 | 7.1 (v3.1) | WordPress WATI Chat and Notification plugin <= 1.1.2 … |
Hieu Nguyen |
WATI Chat and Notification |
2025-03-11T21:01:05.019Z | 2026-04-28T16:11:50.727Z |
| cve-2025-28927 | 4.3 (v3.1) | WordPress Display Template Name plugin <= 1.7.1 - Cros… |
A. Chappard |
Display Template Name |
2025-03-11T21:01:06.585Z | 2026-04-28T16:11:50.708Z |
| cve-2025-28921 | 7.1 (v3.1) | WordPress SpatialMatch IDX plugin <= 3.0.9 - Reflected… |
homejunction |
SpatialMatch IDX |
2025-03-26T14:24:24.915Z | 2026-04-28T16:11:50.707Z |
| cve-2025-28922 | 7.1 (v3.1) | WordPress Go To Top plugin <= 0.0.8 - CSRF to Stored X… |
Terence D. |
Go To Top |
2025-03-11T21:01:03.548Z | 2026-04-28T16:11:50.689Z |
| cve-2025-28916 | 9.8 (v3.1) | WordPress Docpro plugin <= 2.0.1 - Local File Inclusio… |
Rashid |
Docpro |
2025-03-26T14:24:24.574Z | 2026-04-28T16:11:50.672Z |
| cve-2025-28920 | 5.3 (v3.1) | WordPress Responsive Google Map plugin <= 3.1.5 - Brok… |
Jogesh |
Responsive Google Map |
2025-03-11T21:01:02.813Z | 2026-04-28T16:11:50.650Z |
| cve-2025-28917 | 7.1 (v3.1) | WordPress Custom Smilies plugin <= 2.9.2 - Cross Site … |
crazyloong |
Custom Smilies |
2025-03-26T14:24:24.733Z | 2026-04-28T16:11:50.646Z |
| cve-2025-28929 | 6.5 (v3.1) | WordPress Tabbed Login Widget plugin <= 1.1.2 - Cross … |
Vivek Marakana |
Tabbed Login Widget |
2025-03-11T21:01:07.282Z | 2026-04-28T16:11:50.629Z |
| cve-2025-28914 | 5.9 (v3.1) | WordPress wordpress login form to anywhere plugin <= 0… |
Ajay Sharma |
wordpress login form to anywhere |
2025-03-11T21:00:59.669Z | 2026-04-28T16:11:50.561Z |
| cve-2025-28915 | 9.1 (v3.1) | WordPress ThemeEgg ToolKit plugin <= 1.2.9 - Arbitrary… |
Theme Egg |
ThemeEgg ToolKit |
2025-03-11T21:01:00.395Z | 2026-04-28T16:11:50.559Z |
| cve-2025-28913 | 4.3 (v3.1) | WordPress WP Add Active Class To Menu Item plugin <=1.… |
Aftab Ali Muni |
WP Add Active Class To Menu Item |
2025-03-11T21:00:58.945Z | 2026-04-28T16:11:50.462Z |
| cve-2025-28912 | 4.3 (v3.1) | WordPress Custom Dashboard Page plugin <= 1.0 - Cross … |
Muntasir Rahman |
Custom Dashboard Page |
2025-03-11T21:00:58.237Z | 2026-04-28T16:11:50.402Z |
| cve-2025-28901 | 7.1 (v3.1) | WordPress Members page only for logged in users plugin… |
Naren |
Members page only for logged in users |
2025-03-11T21:00:52.403Z | 2026-04-28T16:11:50.394Z |
| cve-2025-28911 | 7.1 (v3.1) | WordPress Gravity 2 PDF plugin <= 3.1.3 - Reflected Cr… |
gravity2pdf |
Gravity 2 PDF |
2025-03-26T14:24:24.426Z | 2026-04-28T16:11:50.340Z |
| cve-2025-28904 | 9.3 (v3.1) | WordPress Web Directory Free plugin <= 1.7.6 - SQL Inj… |
Shamalli |
Web Directory Free |
2025-03-25T18:48:24.649Z | 2026-04-28T16:11:50.328Z |
| cve-2025-28905 | 7.1 (v3.1) | WordPress Featured Posts Grid plugin <= 1.7 - CSRF to … |
Chaser324 |
Featured Posts Grid |
2025-03-11T21:00:53.935Z | 2026-04-28T16:11:50.327Z |
| cve-2025-28899 | 7.1 (v3.1) | WordPress WP Event Ticketing plugin <= 1.3.4 - Reflect… |
toddhuish |
WP Event Ticketing |
2025-03-26T14:24:24.019Z | 2026-04-28T16:11:50.323Z |
| cve-2025-28902 | 4.3 (v3.1) | WordPress Contact Form 7 Select Box Editor Button plu… |
Benjamin Pick |
Contact Form 7 Select Box Editor Button |
2025-03-11T21:00:53.238Z | 2026-04-28T16:11:50.314Z |
| cve-2025-28907 | 5.9 (v3.1) | WordPress WP Last Modified plugin <= 0.1 - Cross Site … |
Rahul Arora |
WP Last Modified |
2025-03-11T21:00:55.405Z | 2026-04-28T16:11:50.313Z |
| cve-2025-28896 | 4.7 (v3.1) | WordPress AS English Admin plugin <= 1.0.0 - Open Redi… |
Akshar Soft Solutions |
AS English Admin |
2025-03-11T21:00:50.235Z | 2026-04-28T16:11:50.304Z |
| cve-2025-28906 | 5.9 (v3.1) | WordPress Skitter Slideshow plugin <= 2.5.2 - Cross Si… |
Thiago S.F. |
Skitter Slideshow |
2025-03-11T21:00:54.659Z | 2026-04-28T16:11:50.285Z |
| cve-2025-28908 | 5.9 (v3.1) | WordPress pipDisqus plugin <= 1.6 - Cross Site Scripti… |
pipdig |
pipDisqus |
2025-03-11T21:00:56.150Z | 2026-04-28T16:11:50.278Z |
| cve-2025-28909 | 4.3 (v3.1) | WordPress WP No-Bot Question plugin <= 0.1.7 - Cross … |
edwardw |
WP No-Bot Question |
2025-03-11T21:00:56.854Z | 2026-04-28T16:11:50.276Z |
| cve-2025-28903 | 7.1 (v3.1) | WordPress Driving Directions plugin <= 1.4.4 - Reflect… |
hectorgarrofe |
Driving Directions |
2025-03-26T14:24:24.246Z | 2026-04-28T16:11:50.252Z |
| cve-2025-28910 | 4.3 (v3.1) | WordPress WP Hide Admin Bar plugin <= 2.0 - Cross Site… |
Ravinder Khurana |
WP Hide Admin Bar |
2025-03-11T21:00:57.554Z | 2026-04-28T16:11:50.250Z |
| cve-2025-28898 | 9.3 (v3.1) | WordPress WP Multistore Locator plugin <= 2.5.2 - SQL … |
WPExperts.io |
WP Multistore Locator |
2025-03-26T14:24:23.843Z | 2026-04-28T16:11:50.248Z |
| cve-2025-28900 | 7.1 (v3.1) | WordPress TabGarb Pro plugin <= 2.6 - CSRF to Stored X… |
webgarb |
TabGarb Pro |
2025-03-11T21:00:51.708Z | 2026-04-28T16:11:50.233Z |
| cve-2025-28894 | 7.1 (v3.1) | WordPress List of Posts from each Category plugin for … |
frucomerci |
List of Posts from each Category plugin for WordPress |
2025-03-11T21:00:48.897Z | 2026-04-28T16:11:50.179Z |
| cve-2025-28893 | 9.9 (v3.1) | WordPress Visual Text Editor plugin <= 1.2.1 - Remote … |
Govind |
Visual Text Editor |
2025-03-26T14:24:23.579Z | 2026-04-28T16:11:50.169Z |
| cve-2025-28897 | 7.1 (v3.1) | WordPress Domain Theme plugin <= 1.3 - CSRF to Stored … |
Steveorevo |
Domain Theme |
2025-03-11T21:00:50.952Z | 2026-04-28T16:11:50.167Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-151 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-150 | Multiples vulnérabilités dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-149 | Vulnérabilité dans Cisco IOS | 2014-03-27T00:00:00.000000 | 2014-03-27T00:00:00.000000 |
| certfr-2014-avi-148 | Multiples vulnérabilités dans IBM Lotus Protector for Mail Security | 2014-03-25T00:00:00.000000 | 2014-03-25T00:00:00.000000 |
| certfr-2014-avi-147 | Vulnérabilité dans Mozilla Firefox pour Android | 2014-03-25T00:00:00.000000 | 2014-03-25T00:00:00.000000 |
| certfr-2014-avi-146 | Vulnérabilité dans le noyau Linux | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-145 | Vulnérabilité dans le noyau Linux | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-144 | Vulnérabilité dans le noyau Linux | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-143 | Vulnérabilité dans IBM OS/400 | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-142 | Multiples vulnérabilités dans IBM InfoSphere BigInsights | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-141 | Multiples vulnérabilités dans IBM Cognos Express | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-140 | Vulnérabilité dans IBM Rational ClearCase | 2014-03-24T00:00:00.000000 | 2014-03-24T00:00:00.000000 |
| certfr-2014-avi-139 | Vulnérabilité dans OpenSSH | 2014-03-21T00:00:00.000000 | 2014-03-21T00:00:00.000000 |
| certfr-2014-avi-138 | Vulnérabilité dans Bluecoat Content Analysis System | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-137 | Multiples vulnérabilités dans le système SCADA Siemens SIMATIC | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-136 | Vulnérabilité dans nginx | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-135 | Vulnérabilité dans EMC Connectrix Manager | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-134 | Vulnérabilité dans Cisco AsyncOS | 2014-03-20T00:00:00.000000 | 2014-03-20T00:00:00.000000 |
| certfr-2014-avi-133 | Multiples vulnérabilités dans les produits Mozilla | 2014-03-19T00:00:00.000000 | 2014-03-19T00:00:00.000000 |
| certfr-2014-avi-132 | Multiples vulnérabilités dans PHP | 2014-03-19T00:00:00.000000 | 2014-03-19T00:00:00.000000 |
| certfr-2014-avi-131 | Multiples vulnérabilités dans Apache httpd | 2014-03-19T00:00:00.000000 | 2014-03-19T00:00:00.000000 |
| certfr-2014-avi-130 | Vulnérabilité dans les produits Huawei | 2014-03-18T00:00:00.000000 | 2014-03-18T00:00:00.000000 |
| certfr-2014-avi-129 | Multiples vulnérabilités dans Google Chrome | 2014-03-17T00:00:00.000000 | 2014-03-17T00:00:00.000000 |
| certfr-2014-avi-128 | Multiples vulnérabilités dans Moodle | 2014-03-17T00:00:00.000000 | 2014-03-17T00:00:00.000000 |
| certfr-2014-avi-127 | Multiples vulnérabilités dans Spip | 2014-03-14T00:00:00.000000 | 2014-03-14T00:00:00.000000 |
| certfr-2014-avi-126 | Multiples vulnérabilités dans le système SCADA Siemens SIMATIC | 2014-03-14T00:00:00.000000 | 2014-03-14T00:00:00.000000 |
| certfr-2014-avi-125 | Multiples vulnérabilités dans Asterisk | 2014-03-13T00:00:00.000000 | 2014-03-13T00:00:00.000000 |
| certfr-2014-avi-124 | Vulnérabilité dans Adobe Shockwave Player | 2014-03-13T00:00:00.000000 | 2014-03-13T00:00:00.000000 |
| certfr-2014-avi-123 | Multiples vulnérabilités dans Juniper | 2014-03-13T00:00:00.000000 | 2014-03-13T00:00:00.000000 |
| certfr-2014-avi-122 | Vulnérabilité dans le protocole Microsoft Security Account Manager Remote | 2014-03-12T00:00:00.000000 | 2014-03-12T00:00:00.000000 |