CVE List - 2025 / May
Showing 1001 - 1100 of 3984 CVEs for May 2025 (Page 11 of 40)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-47490 | 2025-05-07 | WordPress Ultimate WP Mail <= 1.3.4 - SQL Injection Vulnerability |
| CVE-2025-47491 | 2025-05-07 | WordPress Contact Form Widget <= 1.4.6 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47493 | 2025-05-07 | WordPress Ultimate Blocks <= 3.2.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47494 | 2025-05-07 | WordPress EventON <= 2.4.1 - Local File Inclusion Vulnerability |
| CVE-2025-47495 | 2025-05-07 | WordPress Blockspare <= 3.2.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47496 | 2025-05-07 | WordPress PublishPress Authors <= 4.7.5 - Local File Inclusion Vulnerability |
| CVE-2025-47497 | 2025-05-07 | WordPress Logo Showcase <= 3.0.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47498 | 2025-05-07 | WordPress Hotel Booking <= 3.6 - Local File Inclusion Vulnerability |
| CVE-2025-47499 | 2025-05-07 | WordPress Simple Blog Stats <= 20250416 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47501 | 2025-05-07 | WordPress Content Control <= 2.6.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47502 | 2025-05-07 | WordPress Mollie Forms <= 2.7.12 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47503 | 2025-05-07 | WordPress NGG Smart Image Search <= 3.3.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47504 | 2025-05-07 | WordPress Custom Checkout Fields for WooCommerce <= 1.8.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47505 | 2025-05-07 | WordPress Product Time Countdown for WooCommerce <= 1.6.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47506 | 2025-05-07 | WordPress Contextual Related Posts <= 4.0.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47507 | 2025-05-07 | WordPress Better Search <= 4.1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47508 | 2025-05-07 | WordPress GamiPress <= 7.3.7 - Local File Inclusion Vulnerability |
| CVE-2025-47509 | 2025-05-07 | WordPress Top 10 <= 4.1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47510 | 2025-05-07 | WordPress Display Eventbrite Events < 6.3 - Local File Inclusion Vulnerability |
| CVE-2025-47514 | 2025-05-07 | WordPress ELI's Related Posts Footer Links and Widget plugin <= 1.2.04.20 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability |
| CVE-2025-47515 | 2025-05-07 | WordPress WP DPE-GES <= 1.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47516 | 2025-05-07 | WordPress Time Clock <= 1.2.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47517 | 2025-05-07 | WordPress Accept Donations with PayPal plugin <= 1.4.5 - CSRF to Stored XSS vulnerability |
| CVE-2025-47518 | 2025-05-07 | WordPress Contact Form 7 – PayPal & Stripe Add-on <= 2.3.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47519 | 2025-05-07 | WordPress Easy PayPal Events <= 1.2.2 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47520 | 2025-05-07 | WordPress Charitable <= 1.8.5.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47521 | 2025-05-07 | WordPress Robo Gallery <= 5.0.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47522 | 2025-05-07 | WordPress AWEOS WP Lock <= 1.4.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47523 | 2025-05-07 | WordPress Seznam Webmaster <= 1.4.7 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47524 | 2025-05-07 | WordPress Quran multilanguage Text & Audio <= 2.3.23 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47525 | 2025-05-07 | WordPress Bold Page Builder <= 5.3.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47526 | 2025-05-07 | WordPress GS Variation Swatches for WooCommerce <= 3.0.4 - Broken Access Control Vulnerability |
| CVE-2025-47528 | 2025-05-07 | WordPress Ovation Elements <= 1.1.2 - Broken Access Control Vulnerability |
| CVE-2025-47531 | 2025-05-07 | WordPress XT Event Widget for Social Events <= 1.1.7 - Local File Inclusion Vulnerability |
| CVE-2025-47533 | 2025-05-07 | WordPress Graphina plugin <= 3.0.4 - Cross Site Request Forgery (CSRF) to Local File Inclusion vulnerability |
| CVE-2025-47537 | 2025-05-07 | WordPress PDF Invoices for WooCommerce + Drag and Drop Template Builder <= 5.3.8 - SQL Injection Vulnerability |
| CVE-2025-47538 | 2025-05-07 | WordPress Cart tracking for WooCommerce <= 1.0.17 - SQL Injection Vulnerability |
| CVE-2025-47540 | 2025-05-07 | WordPress weMail <= 1.14.13 - Sensitive Data Exposure Vulnerability |
| CVE-2025-47542 | 2025-05-07 | WordPress Simple calendar for Elementor <= 1.6.5 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47543 | 2025-05-07 | WordPress TrueBooker <= 1.0.7 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47544 | 2025-05-07 | WordPress Dynamic Pricing With Discount Rules for WooCommerce <= 4.5.8 - SQL Injection Vulnerability |
| CVE-2025-47545 | 2025-05-07 | WordPress Poll Maker <= 5.7.7 - Race Condition Vulnerability |
| CVE-2025-47546 | 2025-05-07 | WordPress WP Compress <= 6.30.30 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47547 | 2025-05-07 | WordPress SendPulse Email Marketing Newsletter <= 2.1.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47548 | 2025-05-07 | WordPress Wbcom Designs - Activity Link Preview For BuddyPress <= 1.4.4 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-47549 | 2025-05-07 | WordPress BEAF <= 4.6.10 - Arbitrary File Upload Vulnerability |
| CVE-2025-47550 | 2025-05-07 | WordPress Instantio <= 3.3.16 - Arbitrary File Upload Vulnerability |
| CVE-2025-47551 | 2025-05-07 | WordPress Wiki Embed plugin <= 1.4.6 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability |
| CVE-2025-47587 | 2025-05-07 | WordPress YaySMTP <= 2.6.4 - SQL Injection Vulnerability |
| CVE-2025-47589 | 2025-05-07 | WordPress Ebook Store <= 5.8007 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47590 | 2025-05-07 | WordPress WPSpeed <= 2.6.5 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47591 | 2025-05-07 | WordPress Bulk Featured Image <= 1.2.1 - Broken Access Control Vulnerability |
| CVE-2025-47592 | 2025-05-07 | WordPress Legal Terms and Conditions Popup for User Login and WooCommerce Checkout – TPUL <= 2.0.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47593 | 2025-05-07 | WordPress Really Simple Under Construction Page <= 1.4.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47594 | 2025-05-07 | WordPress Soccer Live Scores <= 1.0.5 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47595 | 2025-05-07 | WordPress Color Your Bar <= 2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47596 | 2025-05-07 | WordPress Beacon Lead Magnets and Lead Capture <= 1.5.8 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47597 | 2025-05-07 | WordPress WP Podcasts Manager <= 1.2 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47602 | 2025-05-07 | WordPress Calculate Prices based on Distance For WooCommerce <= 1.3.5 - Broken Access Control Vulnerability |
| CVE-2025-47604 | 2025-05-07 | WordPress Inline Related Posts <= 3.8.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47605 | 2025-05-07 | WordPress WP jQuery DataTable <= 4.1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47606 | 2025-05-07 | WordPress Simple Giveaways <= 2.48.2 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47607 | 2025-05-07 | WordPress Show All Comments <= 7.0.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47609 | 2025-05-07 | WordPress EasyMe Connect <= 3.0.3 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47612 | 2025-05-07 | WordPress ClickWhale <= 2.4.6 - Broken Access Control Vulnerability |
| CVE-2025-47614 | 2025-05-07 | WordPress LessButtons Social Sharing and Statistics plugin <= 1.6.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability |
| CVE-2025-47615 | 2025-05-07 | WordPress Amazon Product in a Post <= 5.2.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47616 | 2025-05-07 | WordPress aBlocks <= 1.9.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47617 | 2025-05-07 | WordPress WP Front User Submit / Front Editor <= 4.9.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47620 | 2025-05-07 | WordPress Martins Free Monetized Ad Exchange Network plugin <= 1.0.5 - CSRF to XSS vulnerability |
| CVE-2025-47621 | 2025-05-07 | WordPress Meks Flexible Shortcodes <= 1.3.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47622 | 2025-05-07 | WordPress Email Notification on Login <= 1.6.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47623 | 2025-05-07 | WordPress Easy PayPal Buy Now Button <= 2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47624 | 2025-05-07 | WordPress DoFollow Case by Case <= 3.5.1 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47625 | 2025-05-07 | WordPress DoFollow Case by Case <= 3.5.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47626 | 2025-05-07 | WordPress Submission DOM tracking for Contact Form 7 <= 2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47628 | 2025-05-07 | WordPress QS Dark Mode <= 3.0 - Broken Access Control Vulnerability |
| CVE-2025-47629 | 2025-05-07 | WordPress WP-CRM System <= 3.4.1 - PHP Object Injection Vulnerability |
| CVE-2025-47630 | 2025-05-07 | WordPress Ajax Load More <= 7.3.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47632 | 2025-05-07 | WordPress Awesome Gallery <= 1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47633 | 2025-05-07 | WordPress Awin – Advertiser Tracking for WooCommerce plugin <= 2.0.0 - CSRF to Product Feed Regeneration vulnerability |
| CVE-2025-47635 | 2025-05-07 | WordPress WebinarPress <= 1.33.27 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-47636 | 2025-05-07 | WordPress List category posts <= 0.90.3 - Local File Inclusion Vulnerability |
| CVE-2025-47638 | 2025-05-07 | WordPress WP Discord Invite <= 2.5.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47639 | 2025-05-07 | WordPress Supertext Translation and Proofreading plugin <= 4.25 - CSRF to Stored XSS vulnerability |
| CVE-2025-47643 | 2025-05-07 | WordPress ELEX Product Feed for WooCommerce <= 3.1.2 - SQL Injection Vulnerability |
| CVE-2025-47644 | 2025-05-07 | WordPress Integrations of Zoho CRM with Elementor form <= 1.0.7 - Open Redirection Vulnerability |
| CVE-2025-47647 | 2025-05-07 | WordPress Sidebar Manager Light <= 1.18 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47648 | 2025-05-07 | WordPress Pays – WooCommerce Payment Gateway <= 2.6 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47649 | 2025-05-07 | WordPress Open Close WooCommerce Store <= 4.9.5 - Local File Inclusion Vulnerability |
| CVE-2025-47653 | 2025-05-07 | WordPress WP-Recall <= 16.26.14 - Local File Inclusion Vulnerability |
| CVE-2025-47655 | 2025-05-07 | WordPress theMarketer plugin <= 1.4.7 - CSRF to Stored XSS vulnerability |
| CVE-2025-47656 | 2025-05-07 | WordPress Spiraclethemes Site Library <= 1.4.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47657 | 2025-05-07 | WordPress Productive Commerce <= 1.1.22 - SQL Injection Vulnerability |
| CVE-2025-47659 | 2025-05-07 | WordPress WPBakery Visual Composer WHMCS Elements <= 1.0.4.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47661 | 2025-05-07 | WordPress 워드프레스 결제 심플페이 <= 5.2.11 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-47662 | 2025-05-07 | WordPress Woobox <= 1.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47664 | 2025-05-07 | WordPress WP Pipes <= 1.4.2 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-47665 | 2025-05-07 | WordPress N360 | Splash Screen <= 1.0.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47667 | 2025-05-07 | WordPress LiveAgent <= 4.4.7 - Cross Site Request Forgery (CSRF) Vulnerability |