Recent Advisories

Severity ID Title Vendor Product Date Type
Unknown ADV-3300

CVE-2025-3924 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization to Unauthenticated Email Enumeration

Vulnerability Details Basic Information Title CVE-2025-3924 PeproDev Ultimate Profile Solutions 1.9.1 – 7.5.2 – Missing Authorization t...

N/A N/A NEWS
Unknown ADV-3299

CVE-2025-3851 Download Manager and Payment Form WordPress Plugin – WP SmartPay 1.1.0 – 2.7.13 – Authenticated (Subscriber+) Information Exposure

Vulnerability Details Basic Information Title CVE-2025-3851 Download Manager and Payment Form WordPress Plugin – WP SmartPay 1.1.0 – 2.7.13 &...

N/A N/A NEWS
Unknown ADV-3294

CVE-2025-4055 Multiple Post Type Order <= 1.10.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mpto Shortcode

Vulnerability Details Basic Information Title CVE-2025-4055 Multiple Post Type Order

N/A N/A NEWS
Unknown ADV-3293

CVE-2025-3860 CarDealerPress <= 6.7.2504.00 - Authenticated (Contributor+) Stored Cross-Site Scripting via saleclass Parameter

Vulnerability Details Basic Information Title CVE-2025-3860 CarDealerPress

N/A N/A NEWS
Unknown ADV-3292

CVE-2025-4220 Xavin’s List Subpages <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

Vulnerability Details Basic Information Title CVE-2025-4220 Xavin’s List Subpages

N/A N/A NEWS
Unknown ADV-3291

CVE-2025-4054 Relevanssi <= 4.24.3 - Unauthenticated Stored Cross-Site Scripting via Search Highlights

Vulnerability Details Basic Information Title CVE-2025-4054 Relevanssi

N/A N/A NEWS
Unknown ADV-3290

CVE-2025-3218

Vulnerability Details Basic Information Title CVE-2025-3218 Type cve Published 2025-05-07T02:15:31 Last Seen 2025-05-07T02:23:10 CVSS Score 5.4 (ME...

N/A N/A NEWS
Unknown ADV-3279

CVE-2025-47418 Recording

Vulnerability Details Basic Information Title CVE-2025-47418 Recording Type cve Published 2025-05-06T20:13:38 Last Seen 2025-05-06T20:57:51 CVSS Sc...

N/A N/A NEWS
Unknown ADV-3278

CVE-2025-46572 passport-wsfed-saml2 Has SAML Authentication Bypass via Signature Wrapping

Vulnerability Details Basic Information Title CVE-2025-46572 passport-wsfed-saml2 Has SAML Authentication Bypass via Signature Wrapping Type cve Pu...

N/A N/A NEWS
Unknown ADV-3276

CVE-2025-46573 passport-wsfed-saml2 Has SAML Authentication Bypass via Attribute Smuggling

Vulnerability Details Basic Information Title CVE-2025-46573 passport-wsfed-saml2 Has SAML Authentication Bypass via Attribute Smuggling Type cve P...

N/A N/A NEWS