cvelist - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
Unknown	ADV-2390	CVE-2024-13419 Smart Framework <= Multiple Plugins - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting Vulnerability Details Basic Information Title CVE-2024-13419 Smart Framework	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2389	CVE-2025-3748 Taxonomy Chain Menu <= 1.0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via pn_chain_menu Shortcode Vulnerability Details Basic Information Title CVE-2025-3748 Taxonomy Chain Menu	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2388	CVE-2025-3510 tagDiv Composer <= 5.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Shortcodes Vulnerability Details Basic Information Title CVE-2025-3510 tagDiv Composer	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2387	CVE-2024-13344 Advance Seat Reservation Management for WooCommerce <= 3.3 - Unauthenticated SQL Injection Vulnerability Details Basic Information Title CVE-2024-13344 Advance Seat Reservation Management for WooCommerce	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2386	CVE-2024-13322 Ads Pro Plugin – Multi-Purpose WordPress Advertising Manager <= 4.88 - Unauthenticated SQL Injection Vulnerability Details Basic Information Title CVE-2024-13322 Ads Pro Plugin – Multi-Purpose WordPress Advertising Manager	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2385	CVE-2024-12023 FULL – Cliente 3.1.5 – 3.1.25 – Authenticated (Subscriber+) SQL Injection Vulnerability Details Basic Information Title CVE-2024-12023 FULL – Cliente 3.1.5 – 3.1.25 – Authenticated (Subscriber+) SQL Injection ...	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2384	CVE-2024-13418 Smart Framework <= Multiple Plugins - Authenticated (Subscriber+) Arbitrary File Upload Vulnerability Details Basic Information Title CVE-2024-13418 Smart Framework	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2383	CVE-2025-3858 Formality <= 1.5.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via align Parameter Vulnerability Details Basic Information Title CVE-2025-3858 Formality	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2362	CVE-2025-3488 WPML Multilingual CMS 3.6.0 – 4.7.3 – Authenticated (Contributor+) Stored Cross-Site Scripting via wpml_language_switcher Shortcode Vulnerability Details Basic Information Title CVE-2025-3488 WPML Multilingual CMS 3.6.0 – 4.7.3 – Authenticated (Contributor+) Stored C...	N/A	N/A	May 2, 2025	NEWS
Unknown	ADV-2361	CVE-2025-3438 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.17.4 - Unauthenticated Limited Privilege Escalation Vulnerability Details Basic Information Title CVE-2025-3438 MStore API – Create Native Android & iOS Apps On The Cloud	N/A	N/A	May 2, 2025	NEWS