CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2025-5209 – Ivory Search < 5.5.10 - Admin+ Stored XSS
https://notcve.org/view.php?id=CVE-2025-5209
27 May 2025 — The Ivory Search WordPress plugin before 5.5.10 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 5.5.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attacke... • https://wpscan.com/vulnerability/8b51dc46-62c8-45b5-96ce-fb774b430388 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2025-4840 – Likes and Dislikes Plugin <= 1.0.0 - Unauthenticated SQL Injection
https://notcve.org/view.php?id=CVE-2025-4840
20 May 2025 — The inprosysmedia-likes-dislikes-post WordPress plugin through 1.0.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection The Likes and Dislikes Plugin plugin for WordPress is vulnerable to SQL Injection via the 'post' parameter in all versions up to, and including, 1.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. Thi... • https://wpscan.com/vulnerability/85dc579d-edc4-421e-9bb1-09629dec527b • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2025-3581 – Newsletter < 8.8.5 - Admin+ Stored XSS via Widget
https://notcve.org/view.php?id=CVE-2025-3581
19 May 2025 — The Newsletter WordPress plugin before 8.8.5 does not validate and escape some of its Widget options before outputting them back in a page/post where the block is embed, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). El complemento Newsletter de WordPress anterior a la versión 8.8.5 no valida ni escapa algunas de las opciones de su widget antes de mostrarlas nuevament... • https://wpscan.com/vulnerability/2d96f018-510d-40ab-9e73-76fa44784813 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2025-3582 – Newsletter < 8.8.5 - Admin+ Stored XSS via Form
https://notcve.org/view.php?id=CVE-2025-3582
19 May 2025 — The Newsletter WordPress plugin before 8.85 does not sanitise and escape some of its Form settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). El complemento Newsletter de WordPress anterior a la versión 8.85 no depura ni escapa de algunas de las configuraciones de formulario, lo que podría permitir a usuarios con privilegios elevados, como el administrador, reali... • https://wpscan.com/vulnerability/19db8521-8dff-48c5-b21a-1001895292e0 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-2921 – Short URL <= 1.6.8 - Subscriber+ SQLi
https://notcve.org/view.php?id=CVE-2023-2921
16 May 2025 — The Short URL WordPress plugin through 1.6.8 does not properly sanitise and escape a parameter before using it in SQL statement, leading to a SQL injection exploitable by users with relatively low privilege on the site, like subscribers. The Short URL plugin for WordPress is vulnerable to SQL Injection in all versions up to, and including, 1.6.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated a... • https://wpscan.com/vulnerability/0f85db4f-8493-4941-8f3c-e5258c581bdc • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-9238 – AVIF & SVG Uploader <= 1.1.0 - Author+ Stored XSS via SVG Uplaod
https://notcve.org/view.php?id=CVE-2024-9238
15 May 2025 — The AVIF Uploader WordPress plugin before 1.1.1 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads. • https://wpscan.com/vulnerability/a7de0cf6-3064-4595-9037-f8407fe40724 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2025-4580 – File Provider <= 1.2.3 - Item Deletion via CSRF
https://notcve.org/view.php?id=CVE-2025-4580
14 May 2025 — The File Provider WordPress plugin through 1.2.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack The File Provider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.3. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to delete items granted they can trick a site administrator into per... • https://wpscan.com/vulnerability/8741353a-2a7f-4dee-b62d-7f5fe435f1a1 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 3CVE-2025-4578 – File Provider <= 1.2.3 - Unauthenticated SQLi
https://notcve.org/view.php?id=CVE-2025-4578
14 May 2025 — The File Provider WordPress plugin through 1.2.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection The File Provider plugin for WordPress is vulnerable to SQL Injection via the 'fileId' parameter in all versions up to, and including, 1.2.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauth... • https://packetstorm.news/files/id/206265 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2025-3584 – Newsletter < 8.8.2 - Admin+ Stored XSS via Subscription
https://notcve.org/view.php?id=CVE-2025-3584
13 May 2025 — The Newsletter WordPress plugin before 8.8.2 does not sanitise and escape some of its Subscription settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup). The Newsletter – Send awesome emails from WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 8.8.1 due to insufficient input sanitiz... • https://wpscan.com/vulnerability/76937bdd-7ffa-4b5e-ade1-60da095a03a3 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2025-3662 – FancyBox for WordPress < 3.3.6 - Unauthenticated Stored XSS
https://notcve.org/view.php?id=CVE-2025-3662
13 May 2025 — The FancyBox for WordPress plugin before 3.3.6 does not escape captions and titles attributes before using them to populate galleries' caption fields. The issue was received as a Contributor+ Stored XSS, however one of our researcher (Marc Montpas) escalated it to an Unauthenticated Stored XSS The FancyBox for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via image title attributes parameter in all versions up to, and including, 3.3.5 due to insufficient input sanitization and ... • https://wpscan.com/vulnerability/4cda12f0-3c23-44ad-80ea-db2443ebcf82 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •