CVE/PSC | Application | Date | Affected versions | Description |
---|---|---|---|---|
Actual on: Aug 28, 2025, 12:08:50 | ||||
YouTube Video Gallery by YouTube Showcase – Video Gallery Plugin for WordPress
vulnerable
|
Aug 28, 2025, 17:08:18 |
Min -
Max 3.5.2
|
Responsive YouTube Video Gallery Plugin for WordPress – YouTube Showcase [youtube-showcase] < 3.5.2 CVE-2025-54731 | |
vulnerable
|
Aug 28, 2025, 16:08:36 |
Min -
Max 5.4.4
|
Bold Page Builder [bold-page-builder] < 5.4.4 CVE-2025-58194 [en] Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in boldthemes Bold Page Builder allows Stored XSS. This issue affects Bold Page Builder: from n/a through 5.4.3. | |
SAFE & CERTIFIED
|
Aug 28, 2025, 11:08:45 |
Min 4.5.7
Max 4.5.7
|
The Redux Framework has long been the go-to options framework for WordPress developers. It provides an extensible, fully responsive environment for building option panels, customizer controls, and advanced UI fields for themes and plugins. By saving developers months of work, Redux accelerates innovation while maintaining a clean, standards-based architecture. With the release of version 4.5.7, Redux Framework has officially achieved the Plugin Security Certification (PSC-2025-64592) by CleanTalk, confirmi... | |
vulnerable
|
Aug 28, 2025, 04:08:50 |
Min -
Max 2.2.4
|
Hesabfa Accounting [hesabfa-accounting] <= 2.2.4 (unfixed) CVE-2025-48362 | |
vulnerable
|
Aug 28, 2025, 04:08:50 |
Min -
Max 2.2.4
|
Hesabfa Accounting [hesabfa-accounting] <= 2.2.4 (unfixed) CVE-2025-48361 | |
vulnerable
|
Aug 28, 2025, 04:08:20 |
Min -
Max 1.4.6
|
Statify Widget [statify-widget] <= 1.4.6 (unfixed + closed) CVE-2025-48322 | |
vulnerable
|
Aug 28, 2025, 03:08:45 |
Min -
Max 1.0.6
|
百度分享按钮 [baidushare-wp] <= 1.0.6 (unfixed) CVE-2025-48320 | |
Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress
vulnerable
|
Aug 28, 2025, 03:08:29 |
Min -
Max 10.2.3
|
The Quiz and Survey Master (QSM) WordPress plugin before 10.2.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack. | |
vulnerable
|
Aug 28, 2025, 03:08:17 |
Min -
Max 1.0
|
Advance Food Menu [advance-food-menu] <= 1.0 (unfixed + closed) CVE-2025-48323 | |
vulnerable
|
Aug 28, 2025, 01:08:44 |
Min -
Max 3.4
|
tli.tl auto Twitter poster [tlitl-auto-twitter-poster] <= 3.4 (unfixed) CVE-2025-48324 |