CVE List - 2025 / June
Showing 2601 - 2700 of 3683 CVEs for June 2025 (Page 27 of 37)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-6340 | 2025-06-20 | code-projects School Fees Payment System branch.php cross site scripting |
| CVE-2025-6341 | 2025-06-20 | code-projects School Fees Payment System cross-site request forgery |
| CVE-2025-6342 | 2025-06-20 | code-projects Online Shoe Store admin_football.php sql injection |
| CVE-2025-6343 | 2025-06-20 | code-projects Online Shoe Store admin_product.php sql injection |
| CVE-2025-32753 | 2025-06-20 | Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.0.1, contains an improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability. A low privileged attacker with local access could... |
| CVE-2024-53298 | 2025-06-20 | Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.0.1, contains a missing authorization vulnerability in the NFS export. An unauthenticated attacker with remote access could potentially exploit this vulnerability leading to unauthorized... |
| CVE-2024-7586 | 2025-06-20 | Insertion of Sensitive Information into Log File in GitLab |
| CVE-2025-6344 | 2025-06-20 | code-projects Online Shoe Store contactus.php sql injection |
| CVE-2025-6345 | 2025-06-20 | SourceCodester My Food Recipe Add Recipe Page add-recipe.php addRecipeModal cross site scripting |
| CVE-2025-3227 | 2025-06-20 | Unauthorized channel member management through playbook runs |
| CVE-2025-3228 | 2025-06-20 | Unauthorized Guest user access to Playbook |
| CVE-2025-3319 | 2025-06-20 | IBM Spectrum Protect Server authentication bypass |
| CVE-2025-6346 | 2025-06-20 | SourceCodester Advance Charity Management System fundDetails.php sql injection |
| CVE-2025-52707 | 2025-06-20 | WordPress Firelight Lightbox plugin <= 2.3.16 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52708 | 2025-06-20 | WordPress HUSKY plugin <= 1.3.7 - Local File Inclusion Vulnerability |
| CVE-2025-52710 | 2025-06-20 | WordPress File Manager Pro plugin <= 1.8.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52711 | 2025-06-20 | WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin <= 1.27.8 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52713 | 2025-06-20 | WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin <= 1.27.8 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-52715 | 2025-06-20 | WordPress Classified Listing plugin <= 4.2.0 - Local File Inclusion Vulnerability |
| CVE-2025-52719 | 2025-06-20 | WordPress ProfileGrid plugin <= 5.9.5.2 - Full Path Disclosure (FPD) Vulnerability |
| CVE-2025-52733 | 2025-06-20 | WordPress ANON::form embedded secure form plugin <= 1.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52825 | 2025-06-20 | WordPress Real Estate Manager plugin <= 7.3 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52822 | 2025-06-20 | WordPress WP Roadmap plugin <= 2.1.3 - SQL Injection Vulnerability |
| CVE-2025-52821 | 2025-06-20 | WordPress Video List Manager plugin <= 1.7 - SQL Injection Vulnerability |
| CVE-2025-52802 | 2025-06-20 | WordPress Import YouTube videos as WP Posts plugin <= 2.1 - Broken Access Control Vulnerability |
| CVE-2025-52795 | 2025-06-20 | WordPress WP Front User Submit / Front Editor plugin <= 4.9.4 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52794 | 2025-06-20 | WordPress Creative Contact Form plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52793 | 2025-06-20 | WordPress Esselink.nu Settings plugin <= 2.94 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52792 | 2025-06-20 | WordPress WP User Stylesheet Switcher plugin <= v2.2.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52791 | 2025-06-20 | WordPress Knowledge Base – Knowledge Base Maker plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52790 | 2025-06-20 | WordPress WP-DownloadCounter plugin <= 1.01 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52789 | 2025-06-20 | WordPress Lewe ChordPress plugin <= 3.9.7 - Cross Site Request Forgery (CSRF) to Stored XSS Vulnerability |
| CVE-2025-52784 | 2025-06-20 | WordPress Bluff Post plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52783 | 2025-06-20 | WordPress Change Cart button Colors WooCommerce plugin <= 1.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52782 | 2025-06-20 | WordPress Scroll UP plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52781 | 2025-06-20 | WordPress TinyNav plugin <= 1.4 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52780 | 2025-06-20 | WordPress Logo Manager For Samandehi plugin <= 0.5 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-52772 | 2025-06-20 | WordPress Virtual Moderator plugin <= 1.4 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-50051 | 2025-06-20 | WordPress WP-Members plugin <= 3.5.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50050 | 2025-06-20 | WordPress Jobs for WordPress plugin <= 2.7.12 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50049 | 2025-06-20 | WordPress Modern Footnotes plugin <= 1.4.19 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50048 | 2025-06-20 | WordPress Automatically Hierarchic Categories in Menu plugin <= 2.0.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50047 | 2025-06-20 | WordPress Sitekit plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50046 | 2025-06-20 | WordPress WPComplete plugin <= 2.9.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50045 | 2025-06-20 | WordPress Related Products Manager for WooCommerce plugin <= 1.6.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50044 | 2025-06-20 | WordPress Real Estate Manager plugin <= 7.3 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-50043 | 2025-06-20 | WordPress Code Engine plugin <= 0.3.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50042 | 2025-06-20 | WordPress WP Register Profile With Shortcode plugin <= 3.6.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50041 | 2025-06-20 | WordPress Gutenberg Blocks – ACF Blocks Suite plugin <= 2.6.11 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50038 | 2025-06-20 | WordPress Anant Addons for Elementor plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50037 | 2025-06-20 | WordPress Buying Buddy IDX CRM plugin <= 2.3.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50036 | 2025-06-20 | WordPress Mailing Group Listserv plugin <= 3.0.5 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-50035 | 2025-06-20 | WordPress Fyrebox Quizzes plugin <= 3.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50034 | 2025-06-20 | WordPress Enhanced Blocks – Page Builder Blocks for Gutenberg plugin <= 1.4.1 - Broken Access Control Vulnerability |
| CVE-2025-50033 | 2025-06-20 | WordPress Fitness Park theme <= 1.1.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50030 | 2025-06-20 | WordPress Spark Multipurpose theme <= 1.0.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50027 | 2025-06-20 | WordPress Login/Signup Popup plugin <= 2.9.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50026 | 2025-06-20 | WordPress Spoki plugin <= 2.16.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50025 | 2025-06-20 | WordPress CP Polls plugin <= 1.0.81 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50024 | 2025-06-20 | WordPress ATP Call Now plugin <= 1.0.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50023 | 2025-06-20 | WordPress CodePen Embed Block plugin <= 1.1.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50022 | 2025-06-20 | WordPress WP-FB-AutoConnect plugin <= 4.6.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50021 | 2025-06-20 | WordPress Better Random Redirect plugin <= 1.3.20 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50020 | 2025-06-20 | WordPress RDFa Breadcrumb plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50019 | 2025-06-20 | WordPress Simple Sticky Footer plugin <= 1.3.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50018 | 2025-06-20 | WordPress Tealium plugin <= 2.1.17 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50017 | 2025-06-20 | WordPress WP Voting Contest plugin <= 5.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50016 | 2025-06-20 | WordPress IP Based Login plugin <= 2.4.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50015 | 2025-06-20 | WordPress Hand Talk plugin <= 6.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50014 | 2025-06-20 | WordPress PDPA Consent for Thailand plugin <= 1.1.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50013 | 2025-06-20 | WordPress CSV Importer Improved plugin <= 0.6.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50012 | 2025-06-20 | WordPress Inventory Presser plugin <= 15.0.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50011 | 2025-06-20 | WordPress plugin Recipes manager - WPH <=1.0.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50010 | 2025-06-20 | WordPress Zapier for WordPress plugin <= 1.5.2 - Broken Access Control Vulnerability |
| CVE-2025-50009 | 2025-06-20 | WordPress Kata Plus plugin <= 1.5.3 - Broken Access Control Vulnerability |
| CVE-2025-50008 | 2025-06-20 | WordPress WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily plugin <= 1.2.4.5 - Broken Access Control Vulnerability |
| CVE-2025-49998 | 2025-06-20 | WordPress WooCommerce Fortnox Integration plugin <= 4.5.5 - Broken Access Control Vulnerability |
| CVE-2025-49997 | 2025-06-20 | WordPress Giveaways and Contests by RafflePress plugin <= 1.12.17 - Broken Access Control Vulnerability |
| CVE-2025-49996 | 2025-06-20 | WordPress WP Visitor Statistics (Real Time Traffic) plugin <= 7.8 - Broken Access Control Vulnerability |
| CVE-2025-49995 | 2025-06-20 | WordPress Download Attachments plugin <= 1.3.1 - Insecure Direct Object References (IDOR) Vulnerability |
| CVE-2025-49993 | 2025-06-20 | WordPress Cookie-Script.com plugin <= 1.2.1 - Broken Access Control Vulnerability |
| CVE-2025-49991 | 2025-06-20 | WordPress WP-Recall plugin <= 16.26.14 - Broken Access Control Vulnerability |
| CVE-2025-49990 | 2025-06-20 | WordPress ContentStudio plugin <= 1.3.4 - Broken Access Control Vulnerability |
| CVE-2025-49989 | 2025-06-20 | WordPress App Builder plugin <= 5.5.3 - Broken Access Control Vulnerability |
| CVE-2025-49988 | 2025-06-20 | WordPress Contact Form 7 AWeber Extension plugin <= 0.1.38 - Broken Access Control Vulnerability |
| CVE-2025-49987 | 2025-06-20 | WordPress CRM ERP Business Solution plugin <= 1.13 - Broken Access Control Vulnerability |
| CVE-2025-49986 | 2025-06-20 | WordPress Video List Manager plugin <= 1.7 - Broken Access Control Vulnerability |
| CVE-2025-49985 | 2025-06-20 | WordPress Auto Upload Images plugin <= 3.3.2 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-49984 | 2025-06-20 | WordPress PowerPress Podcasting plugin <= 11.12.11 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-49983 | 2025-06-20 | WordPress WPThumb plugin <= 0.10 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-49982 | 2025-06-20 | WordPress WP Customer Area plugin <= 8.2.5 - Broken Access Control Vulnerability |
| CVE-2025-49981 | 2025-06-20 | WordPress User Roles and Capabilities plugin <= 1.2.6 - Broken Access Control Vulnerability |
| CVE-2025-49980 | 2025-06-20 | WordPress WP User Profile Avatar plugin <= 1.0.6 - Broken Access Control Vulnerability |
| CVE-2025-49979 | 2025-06-20 | WordPress Media Hygiene plugin <= 4.0.1 - Broken Access Control Vulnerability |
| CVE-2025-49978 | 2025-06-20 | WordPress JobSearch plugin <= 2.9.0 - Insecure Direct Object References (IDOR) Vulnerability |
| CVE-2025-49977 | 2025-06-20 | WordPress WP Inventory Manager plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-49976 | 2025-06-20 | WordPress WANotifier plugin <= 2.7.7 - Broken Access Control Vulnerability |
| CVE-2025-49975 | 2025-06-20 | WordPress JobWP plugin <= 2.4.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-49974 | 2025-06-20 | WordPress UpStream: a Project Management Plugin for WordPress plugin <= 2.1.0 - Broken Access Control Vulnerability |
| CVE-2025-49973 | 2025-06-20 | WordPress Image Sizes Controller, Create Custom Image Sizes, Disable Image Sizes plugin <= 1.0.9 - Broken Access Control Vulnerability |