CVE List - 2025 / August
Showing 1501 - 1600 of 3631 CVEs for August 2025 (Page 16 of 37)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-52800 | 2025-08-14 | WordPress The E-Commerce ERP <= 2.1.1.3 - Broken Access Control Vulnerability |
| CVE-2025-52788 | 2025-08-14 | WordPress CaptionPix <= 1.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52785 | 2025-08-14 | WordPress SMM API Plugin <= 6.0.30 - Broken Access Control Vulnerability |
| CVE-2025-52775 | 2025-08-14 | WordPress Project Cost Calculator Plugin <= 1.0.0 - Broken Access Control Vulnerability |
| CVE-2025-52732 | 2025-08-14 | WordPress Google Map Targeting Plugin <= 1.1.6 - Local File Inclusion Vulnerability |
| CVE-2025-52731 | 2025-08-14 | WordPress WordPress Event Manager, Event Calendar and Booking Plugin Plugin <= 4.0.24 - Arbitrary Content Deletion Vulnerability |
| CVE-2025-52730 | 2025-08-14 | WordPress WordPress Event Manager, Event Calendar and Booking Plugin Plugin <= 4.0.24 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52728 | 2025-08-14 | WordPress Responsive Posts Carousel WordPress Plugin Plugin <= 15.0 - Local File Inclusion Vulnerability |
| CVE-2025-52721 | 2025-08-14 | WordPress Global Gallery Plugin <= 9.2.3 - Broken Access Control Vulnerability |
| CVE-2025-52720 | 2025-08-14 | WordPress Super Store Finder Plugin <= 7.5 - SQL Injection Vulnerability |
| CVE-2025-52716 | 2025-08-14 | WordPress WP REST Cache <= 2025.1.0 - Local File Inclusion Vulnerability |
| CVE-2025-52712 | 2025-08-14 | WordPress Post and Page Builder by BoldGrid – Visual Drag and Drop Editor <= 1.27.8 - Path Traversal Vulnerability |
| CVE-2025-50040 | 2025-08-14 | WordPress CF7 Spreadsheets Plugin <= 2.3.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-50031 | 2025-08-14 | WordPress DB Backup <= 6.0 - Broken Access Control Vulnerability |
| CVE-2025-50029 | 2025-08-14 | WordPress AI Tools <= 4.0.7 - Arbitrary Content Deletion Vulnerability |
| CVE-2025-49887 | 2025-08-14 | WordPress Product XML Feed Manager for WooCommerce Plugin <= 2.9.3 - Remote Code Execution (RCE) Vulnerability |
| CVE-2025-49869 | 2025-08-14 | WordPress Eventin Plugin <= 4.0.31 - PHP Object Injection Vulnerability |
| CVE-2025-49437 | 2025-08-14 | WordPress WP LOL Rotation <= 1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49433 | 2025-08-14 | WordPress Supermalink <= 1.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49271 | 2025-08-14 | WordPress GravityWP - Merge Tags <= 1.4.4 - Local File Inclusion Vulnerability |
| CVE-2025-49267 | 2025-08-14 | WordPress Frontend Admin by DynamiApps <= 3.28.3 - SQL Injection Vulnerability |
| CVE-2025-49264 | 2025-08-14 | WordPress Cloud SAML SSO - Single Sign On Login <= 1.0.18 - Local File Inclusion Vulnerability |
| CVE-2025-49065 | 2025-08-14 | WordPress Visit Counter Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49064 | 2025-08-14 | WordPress User Language Switch plugin <= 1.6.10 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49063 | 2025-08-14 | WordPress BaiduXZH Submit(百度熊掌号) plugin <= 1.4.6 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49062 | 2025-08-14 | WordPress WP-jScrollPane plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49061 | 2025-08-14 | WordPress Porn Videos Embed plugin <= 0.9.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49059 | 2025-08-14 | WordPress CleverReach® WP Plugin <= 1.5.20 - SQL Injection Vulnerability |
| CVE-2025-49058 | 2025-08-14 | WordPress SoundSt SEO Search plugin <= 1.2.3 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49057 | 2025-08-14 | WordPress WP Voting Plugin <= 1.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49056 | 2025-08-14 | WordPress 多说社会化评论框 Plugin <= 1.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49054 | 2025-08-14 | WordPress Time Sheets plugin <= 2.1.3 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49053 | 2025-08-14 | WordPress WP Airdrop Manager plugin <= 1.0.5 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49052 | 2025-08-14 | WordPress Netease Music plugin <= 3.2.1 - Broken Access Control vulnerability |
| CVE-2025-49051 | 2025-08-14 | WordPress Hide Text Shortcode plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49048 | 2025-08-14 | WordPress Inspectlet – User Session Recording and Heatmaps plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49047 | 2025-08-14 | WordPress DigitalOcean Spaces Sync plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49044 | 2025-08-14 | WordPress Simple Poll plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability |
| CVE-2025-49038 | 2025-08-14 | WordPress WP Dynamic Links plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49037 | 2025-08-14 | WordPress Authentication and xmlrpc log writer plugin <= 1.2.2 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49036 | 2025-08-14 | WordPress Premium Addons for KingComposer Plugin <= 1.1.1 - Local File Inclusion Vulnerability |
| CVE-2025-49033 | 2025-08-14 | WordPress ProfileGrid <= 5.9.5.3 - SQL Injection Vulnerability |
| CVE-2025-48332 | 2025-08-14 | WordPress Gutenberg Blocks <= 3.3.1 - Local File Inclusion Vulnerability |
| CVE-2025-48293 | 2025-08-14 | WordPress Geo Mashup plugin <= 1.13.16 - Local File Inclusion vulnerability |
| CVE-2025-47689 | 2025-08-14 | WordPress Video Blogster Lite plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-47610 | 2025-08-14 | WordPress WooCommerce Fortnox Integration <= 4.5.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-47536 | 2025-08-14 | WordPress Content Egg plugin <= 7.0.0 - PHP Object Injection Vulnerability |
| CVE-2025-39510 | 2025-08-14 | WordPress Pinterest Automatic Pin plugin < 4.19.0 - SQL Injection vulnerability |
| CVE-2025-39483 | 2025-08-14 | WordPress Eventer plugin <= 3.9.6 - Shortcode Injection vulnerability |
| CVE-2025-32288 | 2025-08-14 | WordPress RT-Theme 18 | Extensions plugin <= 2.4 - Local File Inclusion Vulnerability |
| CVE-2025-31425 | 2025-08-14 | WordPress WP Lead Capturing Pages plugin <= 2.3 - Arbitrary Content Deletion vulnerability |
| CVE-2025-31007 | 2025-08-14 | WordPress Billplz Addon for Contact Form 7 Plugin <= 1.2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-30998 | 2025-08-14 | WordPress WP Links Page <= 4.9.6 - SQL Injection Vulnerability |
| CVE-2025-30993 | 2025-08-14 | WordPress Thank You Page Customizer for WooCommerce – Increase Your Sales <= 1.1.7 - Broken Access Control Vulnerability |
| CVE-2025-30639 | 2025-08-14 | WordPress IDonatePro Plugin <= 2.1.9 - Broken Access Control Vulnerability |
| CVE-2025-30635 | 2025-08-14 | WordPress IDonatePro <= 2.1.9 - Local File Inclusion Vulnerability |
| CVE-2025-30626 | 2025-08-14 | WordPress Multimedia Playlist Slider Addon for WPBakery Page Builder <= 2.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-29014 | 2025-08-14 | WordPress FoodMenu <= 1.20 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-28999 | 2025-08-14 | WordPress WooCommerce Shop Page Builder <= 2.27.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-28987 | 2025-08-14 | WordPress PressForward <= 5.9.1 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-28979 | 2025-08-14 | WordPress WP Pipes <= 1.4.3 - Local File Inclusion Vulnerability |
| CVE-2025-28975 | 2025-08-14 | WordPress Alike - WordPress Custom Post Comparison <= 3.0.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-28962 | 2025-08-14 | WordPress Advanced Google Universal Analytics plugin <= 1.0.3 - Broken Access Control to Sensitive Data Exposure vulnerability |
| CVE-2025-25174 | 2025-08-14 | WordPress BeeTeam368 Extensions Plugin <= 1.9.4 - Local File Inclusion Vulnerability |
| CVE-2025-25172 | 2025-08-14 | WordPress VidMov <= 1.9.4 - Local File Inclusion Vulnerability |
| CVE-2025-24775 | 2025-08-14 | WordPress Forms <= 2.9.0 - Arbitrary File Upload Vulnerability |
| CVE-2025-24766 | 2025-08-14 | WordPress News Magazine X <= 1.2.35 - Local File Inclusion Vulnerability |
| CVE-2025-3703 | 2025-08-14 | WordPress CSS & JavaScript Toolbox < 12.0.3 - Local File Inclusion Vulnerability |
| CVE-2025-54667 | 2025-08-14 | WordPress myCred Plugin plugin <= 2.9.4.3 - Race Condition Vulnerability |
| CVE-2025-54668 | 2025-08-14 | WordPress myCred Plugin plugin <= 2.9.4.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54669 | 2025-08-14 | WordPress MapSVG Plugin < 8.7.4 - SQL Injection Vulnerability |
| CVE-2025-54671 | 2025-08-14 | WordPress oik Plugin plugin <= 4.15.2 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-54672 | 2025-08-14 | WordPress Photo Engine Plugin plugin <= 6.4.3 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-54673 | 2025-08-14 | WordPress Chartify Plugin plugin <= 3.5.3 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-54674 | 2025-08-14 | WordPress Product Configurator for WooCommerce Plugin plugin <= 1.4.4 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-54675 | 2025-08-14 | WordPress YITH WooCommerce Popup Plugin plugin <= 1.48.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-54676 | 2025-08-14 | WordPress Online Booking & Scheduling Calendar for by vcita Plugin plugin <= 4.5.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54678 | 2025-08-14 | WordPress Easy Form Builder Plugin <= 3.8.15 - SQL Injection Vulnerability |
| CVE-2025-54679 | 2025-08-14 | WordPress Neon Channel Product Customizer Free Plugin <= 2.0 - Arbitrary Content Deletion Vulnerability |
| CVE-2025-54680 | 2025-08-14 | WordPress Blogger Buzz Theme theme <= 1.2.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54681 | 2025-08-14 | WordPress Connector for Gravity Forms and Google Sheets Plugin plugin <= 1.2.4 - Open Redirection Vulnerability |
| CVE-2025-54682 | 2025-08-14 | WordPress Connector for Gravity Forms and Google Sheets Plugin plugin <= 1.2.4 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-54683 | 2025-08-14 | WordPress WP Modal Popup with Cookie Integration Plugin plugin <= 2.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54684 | 2025-08-14 | WordPress Integration for Contact Form 7 and Constant Contact Plugin plugin <= 1.1.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54685 | 2025-08-14 | WordPress SureDash Plugin <= 1.1.0 - Sensitive Data Exposure Vulnerability |
| CVE-2025-54686 | 2025-08-14 | WordPress Exertio Theme <= 1.3.2 - PHP Object Injection Vulnerability |
| CVE-2025-54687 | 2025-08-14 | WordPress JetTabs Plugin plugin <= 2.2.9.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54688 | 2025-08-14 | WordPress JetEngine Plugin plugin <= 3.7.1.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54689 | 2025-08-14 | WordPress Urna Theme <= 2.5.7 - Local File Inclusion Vulnerability |
| CVE-2025-54690 | 2025-08-14 | WordPress Xinterio Theme <= 4.2 - Local File Inclusion Vulnerability |
| CVE-2025-54691 | 2025-08-14 | WordPress Motors Plugin plugin <= 1.4.80 - Insecure Direct Object References (IDOR) Vulnerability |
| CVE-2025-54692 | 2025-08-14 | WordPress Membership For WooCommerce Plugin <= 2.9.0 - Broken Access Control Vulnerability |
| CVE-2025-54693 | 2025-08-14 | WordPress Form Block Plugin <= 1.5.5 - Arbitrary File Upload Vulnerability |
| CVE-2025-54694 | 2025-08-14 | WordPress Button Block Plugin plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-54695 | 2025-08-14 | WordPress HT Mega Plugin plugin <= 2.9.0 - Broken Access Control Vulnerability |
| CVE-2025-54696 | 2025-08-14 | WordPress WPFunnels Plugin plugin <= 3.5.26 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54697 | 2025-08-14 | WordPress Kadence WooCommerce Email Designer Plugin <= 1.5.16 - Privilege Escalation Vulnerability |
| CVE-2025-54698 | 2025-08-14 | WordPress Classified Listing Plugin plugin <= 5.0.0 - Content Injection Vulnerability |
| CVE-2025-54699 | 2025-08-14 | WordPress Masteriyo - LMS Plugin plugin <= 1.18.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-54700 | 2025-08-14 | WordPress Makeaholic Theme <= 1.8.4 - Local File Inclusion Vulnerability |