Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

CVE güvenlik açıkları, KEV etiketleri, detay sayfaları ve kategori bazlı listeleme.
Toplam kayıt70,916
Sayfa3368 / 3546
FiltreYok
Medium CVSS: 5.4 Yayın: 2025-01-24 18:15:44

CVE-2025-24714

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Bubble Menu – circle floating menu bubble-menu allows Cross Site Request Forgery.This issue affects Bubble Menu – circle floating menu: from n/a through
Medium CVSS: 5.4 Yayın: 2025-01-24 18:15:44

CVE-2025-24713

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Button Generator – easily Button Builder button-generation allows Cross Site Request Forgery.This issue affects Button Generator – easily Button Builder: from n/a through
Medium CVSS: 5.4 Yayın: 2025-01-24 18:15:44

CVE-2025-24712

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in RadiusTheme Radius Blocks radius-blocks allows Cross Site Request Forgery.This issue affects Radius Blocks: from n/a through
Medium CVSS: 5.4 Yayın: 2025-01-24 18:15:44

CVE-2025-24711

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Popup Box popup-box allows Cross Site Request Forgery.This issue affects Popup Box: from n/a through
Medium CVSS: 6.5 Yayın: 2025-01-24 18:15:44

CVE-2025-24709

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Plethora Plugins Plethora Plugins Tabs + Accordions plethora-tabs-accordions allows Stored XSS.This issue affects Plethora Plugins Tabs + Accordions…
Medium CVSS: 6.5 Yayın: 2025-01-24 18:15:44

CVE-2025-24706

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in MultiVendorX MultiVendorX dc-woocommerce-multi-vendor allows Stored XSS.This issue affects MultiVendorX: from n/a through
Medium CVSS: 5.3 Yayın: 2025-01-24 18:15:43

CVE-2025-24705

CWE-862
Missing Authorization vulnerability in Arshid WooCommerce Quick View woo-quick-view allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Quick View: from n/a through
Medium CVSS: 6.5 Yayın: 2025-01-24 18:15:43

CVE-2025-24704

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grimdonkey Magic the Gathering Card Tooltips magic-the-gathering-card-tooltips allows Stored XSS.This issue affects Magic the Gathering Card Tooltip…
Medium CVSS: 4.4 Yayın: 2025-01-24 18:15:43

CVE-2025-24703

CWE-918
Server-Side Request Forgery (SSRF) vulnerability in Ronald Huereca Comment Edit Core – Simple Comment Editing simple-comment-editing allows Server Side Request Forgery.This issue affects Comment Edit Core – Simple Comment Editing: from n/a through
Medium CVSS: 6.5 Yayın: 2025-01-24 18:15:43

CVE-2025-24702

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Xagio SEO Xagio SEO xagio-seo allows Stored XSS.This issue affects Xagio SEO: from n/a through
Medium CVSS: 4.4 Yayın: 2025-01-24 18:15:43

CVE-2025-24701

CWE-918
Server-Side Request Forgery (SSRF) vulnerability in Bob Chained Quiz chained-quiz allows Server Side Request Forgery.This issue affects Chained Quiz: from n/a through
Medium CVSS: 4.3 Yayın: 2025-01-24 18:15:43

CVE-2025-24698

G5plus Essential Real Estate CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in g5theme Essential Real Estate essential-real-estate allows Cross Site Request Forgery.This issue affects Essential Real Estate: from n/a through
Medium CVSS: 4.3 Yayın: 2025-01-24 18:15:42

CVE-2025-24696

CWE-352
Cross-Site Request Forgery (CSRF) vulnerability in Shafaet Alam Attire Blocks attire-blocks allows Cross Site Request Forgery.This issue affects Attire Blocks: from n/a through
Medium CVSS: 4.4 Yayın: 2025-01-24 18:15:42

CVE-2025-24695

Hasthemes Extensions For Cf7 CWE-918
Server-Side Request Forgery (SSRF) vulnerability in HT Plugins Extensions For CF7 extensions-for-cf7 allows Server Side Request Forgery.This issue affects Extensions For CF7: from n/a through
Medium CVSS: 4.3 Yayın: 2025-01-24 18:15:42

CVE-2025-24693

CWE-862
Missing Authorization vulnerability in Yehi Advanced Notifications advanced-notifications allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Notifications: from n/a through
Medium CVSS: 4.3 Yayın: 2025-01-24 18:15:42

CVE-2025-24691

CWE-862
Missing Authorization vulnerability in ctltwp People Lists people-lists allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects People Lists: from n/a through
Medium CVSS: 6.5 Yayın: 2025-01-24 18:15:42

CVE-2025-24687

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lars Wallenborn Show/Hide Shortcode showhide-shortcode allows Stored XSS.This issue affects Show/Hide Shortcode: from n/a through
High CVSS: 7.6 Yayın: 2025-01-24 18:15:42

CVE-2025-24683

CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Chill RSVP and Event Management rsvp allows SQL Injection.This issue affects RSVP and Event Management: from n/a through
Medium CVSS: 4.3 Yayın: 2025-01-24 18:15:41

CVE-2025-24682

CWE-862
Missing Authorization vulnerability in Michael Super Block Slider super-block-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Block Slider: from n/a through
Medium CVSS: 5.9 Yayın: 2025-01-24 18:15:41

CVE-2025-24681

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpWax Product Carousel Slider & Grid Ultimate for WooCommerce woo-product-carousel-slider-and-grid-ultimate allows Stored XSS.This issue affects Pro…