Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

599 New today

63,348 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

354

Jun 4

517

Jun 5

109

Jun 6

Jun 7

255

Jun 8

658

Jun 9

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

Jun 17

Critical

High

Medium

Low

Latest

CVE-2025-32404

Vulnerability Details Basic Information Title CVE-2025-32404 Type cve Published 2025-05-07T07:15:51 Last Seen 2025-05-07T07:23:43 CVSS Score 4.8 (MEDIUM) CVSS v3 Details Attack Vector NETWORK Attack Complexity...

May 7, 2025

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
Unknown	ADV-3303	CVE-2025-3766 Login Lockdown & Protection <= 2.11 - Missing Authorization to Authenticated (Subscriber+) Arbitrary IP Whitelisting Vulnerability Details Basic Information Title CVE-2025-3766 Login Lockdown & Protection	N/A	N/A	May 7, 2025	NEWS
Unknown	ADV-3302	CVE-2025-2821 Search Exclude <= 2.4.9 - Missing Authorization to Unauthenticated Plugin Settings Modification Vulnerability Details Basic Information Title CVE-2025-2821 Search Exclude	N/A	N/A	May 6, 2025	NEWS
Unknown	ADV-3301	CVE-2025-3853 WPshop 2 – E-Commerce 2.0.0 – 2.6.0 – Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Key Generation Vulnerability Details Basic Information Title CVE-2025-3853 WPshop 2 – E-Commerce 2.0.0 – 2.6.0 – Insecure Direct Object Reference to A...	N/A	N/A	May 6, 2025	NEWS
Unknown	ADV-3300	CVE-2025-3924 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization to Unauthenticated Email Enumeration Vulnerability Details Basic Information Title CVE-2025-3924 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization t...	N/A	N/A	May 6, 2025	NEWS
Unknown	ADV-3299	CVE-2025-3851 Download Manager and Payment Form WordPress Plugin – WP SmartPay 1.1.0 – 2.7.13 – Authenticated (Subscriber+) Information Exposure Vulnerability Details Basic Information Title CVE-2025-3851 Download Manager and Payment Form WordPress Plugin – WP SmartPay 1.1.0 – 2.7.13 &...	N/A	N/A	May 6, 2025	NEWS
Unknown	ADV-3298	CVE-2025-3844 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Authentication Bypass to Account Takeover Vulnerability Details Basic Information Title CVE-2025-3844 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Authentication Bypass t...	N/A	N/A	May 6, 2025	NEWS
Unknown	ADV-3297	CVE-2025-3921 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization to Limited Unauthenticated Arbitrary User Meta Update via handel_ajax_req Function Vulnerability Details Basic Information Title CVE-2025-3921 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization t...	N/A	N/A	May 6, 2025	NEWS
Unknown	ADV-3296	CVE-2025-3852 WPshop 2 – E-Commerce 2.0.0 – 2.6.0 – Authenticated (Subscriber+) Privilege Escalation via Account Takeover Vulnerability Details Basic Information Title CVE-2025-3852 WPshop 2 – E-Commerce 2.0.0 – 2.6.0 – Authenticated (Subscriber+) Privilege...	N/A	N/A	May 6, 2025	NEWS
Unknown	ADV-3295	CVE-2025-4335 Woocommerce Multiple Addresses <= 1.0.7.1 - Authenticated (Subscriber+) Privilege Escalation Vulnerability Details Basic Information Title CVE-2025-4335 Woocommerce Multiple Addresses	N/A	N/A	May 6, 2025	NEWS

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2025-32404

Recent Advisories

CVE-2025-3766 Login Lockdown & Protection <= 2.11 - Missing Authorization to Authenticated (Subscriber+) Arbitrary IP Whitelisting

CVE-2025-2821 Search Exclude <= 2.4.9 - Missing Authorization to Unauthenticated Plugin Settings Modification

CVE-2025-3853 WPshop 2 – E-Commerce 2.0.0 – 2.6.0 – Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Key Generation

CVE-2025-3924 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization to Unauthenticated Email Enumeration

CVE-2025-3851 Download Manager and Payment Form WordPress Plugin – WP SmartPay 1.1.0 – 2.7.13 – Authenticated (Subscriber+) Information Exposure

CVE-2025-3844 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Authentication Bypass to Account Takeover

CVE-2025-3921 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization to Limited Unauthenticated Arbitrary User Meta Update via handel_ajax_req Function

CVE-2025-3852 WPshop 2 – E-Commerce 2.0.0 – 2.6.0 – Authenticated (Subscriber+) Privilege Escalation via Account Takeover

CVE-2025-4335 Woocommerce Multiple Addresses <= 1.0.7.1 - Authenticated (Subscriber+) Privilege Escalation

Protect Your Attack Surface with RedGem

Security Intelligence
Feed