CVE List - 2025 / September
Showing 3201 - 3300 of 4322 CVEs for September 2025 (Page 33 of 44)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-58250 | 2025-09-22 | WordPress Findgo Theme <= 1.3.55 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58249 | 2025-09-22 | WordPress Qubely Plugin <= 1.8.14 - Sensitive Data Exposure Vulnerability |
| CVE-2025-58248 | 2025-09-22 | WordPress Pinterest Pinboard Widget Plugin <= 1.0.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58247 | 2025-09-22 | WordPress TI WooCommerce Wishlist Plugin <= 2.10.0 - Broken Access Control Vulnerability |
| CVE-2025-58245 | 2025-09-22 | WordPress Portfolio Plugin <= 2.58 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58244 | 2025-09-22 | WordPress Constructo Theme <= 4.3.9 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58242 | 2025-09-22 | WordPress Bg Church Memos Plugin <= 1.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58241 | 2025-09-22 | WordPress SnapWidget Social Photo Feed Widget Plugin <= 1.1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58240 | 2025-09-22 | WordPress xili-tidy-tags Plugin <= 1.12.06 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58239 | 2025-09-22 | WordPress WP Category Dropdown Plugin <= 1.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58238 | 2025-09-22 | WordPress PilotPress Plugin <= 2.0.35 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58237 | 2025-09-22 | WordPress LC Wizard Plugin <= 1.3.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58236 | 2025-09-22 | WordPress Force Update Translations Plugin <= 0.5 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58235 | 2025-09-22 | WordPress Front End Users Plugin <= 3.2.33 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58234 | 2025-09-22 | WordPress JS Job Manager Plugin <= 2.0.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58233 | 2025-09-22 | WordPress SQL Chart Builder Plugin <= 2.3.7.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58232 | 2025-09-22 | WordPress Image Editor by Pixo Plugin <= 2.3.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58231 | 2025-09-22 | WordPress Bitly Plugin <= 2.7.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58230 | 2025-09-22 | WordPress ZoloBlocks Plugin <= 2.3.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58229 | 2025-09-22 | WordPress Sitekit Plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58228 | 2025-09-22 | WordPress Quick View for WooCommerce Plugin <= 2.2.16 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58227 | 2025-09-22 | WordPress Podlove Subscribe button Plugin <= 1.3.11 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58226 | 2025-09-22 | WordPress 3D FlipBook – PDF Flipbook Viewer, Flipbook Image Gallery Plugin <= 1.16.16 - Sensitive Data Exposure Vulnerability |
| CVE-2025-58223 | 2025-09-22 | WordPress VoucherPress Plugin <= 1.5.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58224 | 2025-09-22 | WordPress Printeers Print & Ship Plugin <= 1.17.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58222 | 2025-09-22 | WordPress Team Manager Plugin <= 2.3.14 - Broken Access Control Vulnerability |
| CVE-2025-58221 | 2025-09-22 | WordPress PilotPress Plugin <= 2.0.35 - Broken Access Control Vulnerability |
| CVE-2025-58220 | 2025-09-22 | WordPress Card Elements for WPBakery Plugin <= 1.0.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58219 | 2025-09-22 | WordPress Show Pages List Plugin <= 1.2.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58200 | 2025-09-22 | WordPress Flexible FAQ Plugin <= 0.2 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58199 | 2025-09-22 | WordPress Fastly Plugin <= 1.2.28 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58033 | 2025-09-22 | WordPress Draft Plugin <= 3.0.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58032 | 2025-09-22 | WordPress WP Compiler Plugin <= 1.0.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58031 | 2025-09-22 | WordPress Nextend Facebook Connect Plugin <= 3.1.19 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58030 | 2025-09-22 | WordPress Page-list Plugin <= 5.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58029 | 2025-09-22 | WordPress Classic Widgets with Block-based Widgets Plugin <= 1.0.1 - Broken Access Control Vulnerability |
| CVE-2025-58028 | 2025-09-22 | WordPress Designil PDPA Thailand Plugin <= 2.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58027 | 2025-09-22 | WordPress NGG Smart Image Search Plugin <= 3.4.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58026 | 2025-09-22 | WordPress Termageddon: Cookie Consent & Privacy Compliance Plugin <= 1.8.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58025 | 2025-09-22 | WordPress Master Slider Plugin <= 3.11.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58023 | 2025-09-22 | WordPress Genealogical Tree Plugin <= 2.2.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58022 | 2025-09-22 | WordPress ShortCode Plugin <= 0.8.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58021 | 2025-09-22 | WordPress List Child Pages Shortcode Plugin <= 1.3.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58020 | 2025-09-22 | WordPress Theater for WordPress Plugin <= 0.18.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58019 | 2025-09-22 | WordPress Search Atlas SEO Plugin <= 2.5.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58018 | 2025-09-22 | WordPress Mail Subscribe List Plugin <= 2.1.10 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58017 | 2025-09-22 | WordPress Ultimate Store Kit Elementor Addons Plugin <= 2.8.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58016 | 2025-09-22 | WordPress CF7 Submissions Plugin <= 0.26 - Broken Access Control Vulnerability |
| CVE-2025-58015 | 2025-09-22 | WordPress Quiz Maker Plugin <= 6.7.0.61 - Sensitive Data Exposure Vulnerability |
| CVE-2025-58014 | 2025-09-22 | WordPress Quiz Maker Plugin <= 6.7.0.61 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58013 | 2025-09-22 | WordPress CouponXxL Theme <= 4.5.0 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58012 | 2025-09-22 | WordPress Content Mask Plugin <= 1.8.5.2 - Insecure Direct Object References (IDOR) Vulnerability |
| CVE-2025-58011 | 2025-09-22 | WordPress Content Mask Plugin <= 1.8.5.2 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-58010 | 2025-09-22 | WordPress SV Proven Expert Plugin <= 2.0.06 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-58009 | 2025-09-22 | WordPress CP Multi View Event Calendar Plugin <= 1.4.32 - Broken Access Control Vulnerability |
| CVE-2025-58008 | 2025-09-22 | WordPress Participants Database Plugin <= 2.7.6.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58007 | 2025-09-22 | WordPress Social Pug Plugin <= 1.35.1 - Sensitive Data Exposure Vulnerability |
| CVE-2025-58006 | 2025-09-22 | WordPress WP Gravity Forms Keap/Infusionsoft Plugin <= 1.2.4 - Open Redirection Vulnerability |
| CVE-2025-58005 | 2025-09-22 | WordPress DriCub Theme <= 2.9 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-58004 | 2025-09-22 | WordPress DriCub Theme <= 2.9 - Broken Access Control Vulnerability |
| CVE-2025-58003 | 2025-09-22 | WordPress Javo Core Plugin <= 3.0.0.266 - Broken Access Control Vulnerability |
| CVE-2025-58002 | 2025-09-22 | WordPress GD bbPress Tools Plugin <= 3.5.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58001 | 2025-09-22 | WordPress Compact Archives Plugin <= 4.1.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-58000 | 2025-09-22 | WordPress Memberful Plugin <= 1.75.0 - Broken Access Control Vulnerability |
| CVE-2025-57999 | 2025-09-22 | WordPress WPKoi Templates for Elementor Plugin <= 3.4.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57998 | 2025-09-22 | WordPress E-namad & Shamed Logo Manager Plugin <= 2.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57997 | 2025-09-22 | WordPress Trustpilot Reviews Plugin <= 2.5.925 - Broken Access Control Vulnerability |
| CVE-2025-57996 | 2025-09-22 | WordPress Buckets Plugin <= 0.3.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57995 | 2025-09-22 | WordPress DethemeKit For Elementor Plugin <= 2.1.10 - Broken Access Control Vulnerability |
| CVE-2025-57994 | 2025-09-22 | WordPress Upcoming Events Lists Plugin <= 1.4.0 - Insecure Direct Object References (IDOR) Vulnerability |
| CVE-2025-57993 | 2025-09-22 | WordPress Geolocation IP Detection Plugin <= 5.5.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57992 | 2025-09-22 | WordPress Mail Baby SMTP Plugin <= 2.8 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57991 | 2025-09-22 | WordPress Clariti Plugin <= 1.2.1 - Broken Access Control Vulnerability |
| CVE-2025-57990 | 2025-09-22 | WordPress Blog Designer Plugin <= 3.1.8 - Broken Access Control Vulnerability |
| CVE-2025-57989 | 2025-09-22 | WordPress WordPress Widgets Shortcode Plugin <= 1.0.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57988 | 2025-09-22 | WordPress Uncanny Toolkit for LearnDash Plugin <= 3.0.7.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57987 | 2025-09-22 | WordPress WP Events Manager Plugin <= 2.2.1 - Broken Access Control Vulnerability |
| CVE-2025-57986 | 2025-09-22 | WordPress WP Subtitle Plugin <= 3.4.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57985 | 2025-09-22 | WordPress Ultimate Watermark Plugin <= 1.1 - Broken Access Control Vulnerability |
| CVE-2025-57984 | 2025-09-22 | WordPress MakeStories (for Google Web Stories) Plugin <= 3.0.4 - Server Side Request Forgery (SSRF) Vulnerability |
| CVE-2025-57983 | 2025-09-22 | WordPress BP Disable Activation Reloaded Plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57982 | 2025-09-22 | WordPress Advance Portfolio Grid Plugin <= 1.07.6 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57981 | 2025-09-22 | WordPress WP Social Widget Plugin <= 2.3.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57980 | 2025-09-22 | WordPress Safety Exit Plugin <= 1.8.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57979 | 2025-09-22 | WordPress AuthorSure Plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57978 | 2025-09-22 | WordPress Advanced Appointment Booking & Scheduling Plugin <= 1.9 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57977 | 2025-09-22 | WordPress Flexible PDF Invoices for WooCommerce & WordPress Plugin <= 6.0.13 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57976 | 2025-09-22 | WordPress CardCom Payment Gateway Plugin <= 3.5.0.4 - Broken Access Control Vulnerability |
| CVE-2025-57975 | 2025-09-22 | WordPress Team Plugin <= 5.0.6 - Broken Access Control Vulnerability |
| CVE-2025-57974 | 2025-09-22 | WordPress TZ PlusGallery Plugin <= 1.5.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57973 | 2025-09-22 | WordPress WP-Members Plugin <= 3.5.4.2 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57972 | 2025-09-22 | WordPress Helpdesk Support Ticket System for WooCommerce Plugin <= 2.0.2 - Broken Access Control Vulnerability |
| CVE-2025-57971 | 2025-09-22 | WordPress SALESmanago Plugin <= 3.8.1 - Broken Access Control Vulnerability |
| CVE-2025-57970 | 2025-09-22 | WordPress SALESmanago Plugin <= 3.8.1 - Cross Site Request Forgery (CSRF) Vulnerability |
| CVE-2025-57969 | 2025-09-22 | WordPress Hide WP Toolbar Plugin <= 2.7 - Broken Access Control Vulnerability |
| CVE-2025-57968 | 2025-09-22 | WordPress VikRestaurants Table Reservations and Take-Away Plugin <= 1.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57967 | 2025-09-22 | WordPress WPB Quick View for WooCommerce Plugin <= 2.1.8 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57966 | 2025-09-22 | WordPress Gallery Lightbox Plugin <= 1.0.0.41 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57965 | 2025-09-22 | WordPress WP Proposals Plugin <= 2.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-57964 | 2025-09-22 | WordPress Library Bookshelves Plugin <= 5.11 - Cross Site Scripting (XSS) Vulnerability |