CVE-2025-60735 - PerfreeBlog File Upload Vulnerability
CVE ID : CVE-2025-60735
Published : Oct. 24, 2025, 6:15 p.m. | 1 hour, 3 minutes ago
Description : PerfreeBlog v4.0.11 has a File Upload vulnerability in the installPlugin function
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-60735
Published : Oct. 24, 2025, 6:15 p.m. | 1 hour, 3 minutes ago
Description : PerfreeBlog v4.0.11 has a File Upload vulnerability in the installPlugin function
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-60419 - Tenda Denial of Service Vulnerability
CVE ID : CVE-2025-60419
Published : Oct. 24, 2025, 8:16 p.m. | 3 hours, 4 minutes ago
Description : An issue was discovered in the NDIS Usermode IO driver (RtkIOAC60.sys, version 6.0.5600.16348) allowing local authenticated attackers to send a crafted IOCTL request to the driver to cause a denial of service.
Severity: 6.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-60419
Published : Oct. 24, 2025, 8:16 p.m. | 3 hours, 4 minutes ago
Description : An issue was discovered in the NDIS Usermode IO driver (RtkIOAC60.sys, version 6.0.5600.16348) allowing local authenticated attackers to send a crafted IOCTL request to the driver to cause a denial of service.
Severity: 6.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-62716 - Plane Vulnerable to Cross-Site Scripting via Open Redirect in ?next_path Parameter
CVE ID : CVE-2025-62716
Published : Oct. 24, 2025, 8:17 p.m. | 3 hours, 3 minutes ago
Description : Plane is open-source project management software. Prior to version 1.1.0, an open redirect vulnerability in the ?next_path query parameter allows attackers to supply arbitrary schemes (e.g., javascript:) that are passed directly to router.push. This results in a cross-site scripting (XSS) vulnerability, enabling attackers to execute arbitrary JavaScript in the victim’s browser. The issue can be exploited without authentication and has severe impact, including information disclosure, and privilege escalation and modifications of administrative settings. This issue has been patched in version 1.1.0.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-62716
Published : Oct. 24, 2025, 8:17 p.m. | 3 hours, 3 minutes ago
Description : Plane is open-source project management software. Prior to version 1.1.0, an open redirect vulnerability in the ?next_path query parameter allows attackers to supply arbitrary schemes (e.g., javascript:) that are passed directly to router.push. This results in a cross-site scripting (XSS) vulnerability, enabling attackers to execute arbitrary JavaScript in the victim’s browser. The issue can be exploited without authentication and has severe impact, including information disclosure, and privilege escalation and modifications of administrative settings. This issue has been patched in version 1.1.0.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-52099 - "SQLite Integer Overflow Denial of Service"
CVE ID : CVE-2025-52099
Published : Oct. 24, 2025, 9:15 p.m. | 2 hours, 5 minutes ago
Description : Integer Overflow vulnerability in SQLite SQLite3 v.3.50.0 allows a remote attacker to cause a denial of service via the setupLookaside function
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-52099
Published : Oct. 24, 2025, 9:15 p.m. | 2 hours, 5 minutes ago
Description : Integer Overflow vulnerability in SQLite SQLite3 v.3.50.0 allows a remote attacker to cause a denial of service via the setupLookaside function
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-60954 - Microweber CMS Weak Password Requirements Vulnerability
CVE ID : CVE-2025-60954
Published : Oct. 24, 2025, 9:16 p.m. | 2 hours, 5 minutes ago
Description : Microweber CMS 2.0 has Weak Password Requirements. The application does not enforce minimum password length or complexity during password resets. Users can set extremely weak passwords, including single-character passwords, which can lead to account compromise, including administrative accounts.
Severity: 8.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-60954
Published : Oct. 24, 2025, 9:16 p.m. | 2 hours, 5 minutes ago
Description : Microweber CMS 2.0 has Weak Password Requirements. The application does not enforce minimum password length or complexity during password resets. Users can set extremely weak passwords, including single-character passwords, which can lead to account compromise, including administrative accounts.
Severity: 8.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-62717 - Emlog Pro session verification code error due to clearing logic error
CVE ID : CVE-2025-62717
Published : Oct. 24, 2025, 9:16 p.m. | 2 hours, 4 minutes ago
Description : Emlog is an open source website building system. In version 2.5.23, Emlog Pro is vulnerable to a session verification code error due to a clearing logic error. This means the verification code could be reused anywhere an email verification code is required. This issue has been fixed in commit 1f726df.
Severity: 2.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-62717
Published : Oct. 24, 2025, 9:16 p.m. | 2 hours, 4 minutes ago
Description : Emlog is an open source website building system. In version 2.5.23, Emlog Pro is vulnerable to a session verification code error due to a clearing logic error. This means the verification code could be reused anywhere an email verification code is required. This issue has been fixed in commit 1f726df.
Severity: 2.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-62723 - FlashMQ does not release memory of queued QoS messages
CVE ID : CVE-2025-62723
Published : Oct. 24, 2025, 9:16 p.m. | 2 hours, 4 minutes ago
Description : FlashMQ is a MQTT broker/server, designed for multi-CPU environments. Prior to version 1.23.2, any authenticated user can create sessions and have them collect QoS messages. When not sent to a client, these are then not released upon (eventual) session expiration. Version 1.23.2 fixes the issue.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-62723
Published : Oct. 24, 2025, 9:16 p.m. | 2 hours, 4 minutes ago
Description : FlashMQ is a MQTT broker/server, designed for multi-CPU environments. Prior to version 1.23.2, any authenticated user can create sessions and have them collect QoS messages. When not sent to a client, these are then not released upon (eventual) session expiration. Version 1.23.2 fixes the issue.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-34293 - GN4 Publishing System Insecure Direct Object Reference (IDOR) Information Disclosure
CVE ID : CVE-2025-34293
Published : Oct. 24, 2025, 10:15 p.m. | 1 hour, 5 minutes ago
Description : GN4 Publishing System versions prior to 2.6 contain an insecure direct object reference (IDOR) vulnerability via the API. Authenticated requests to the API's object endpoints allow an authenticated user to request arbitrary user IDs and receive sensitive account data for those users, including the stored password and the account's security question and answer. The exposed recovery data and encrypted password may be used to reset or take over the target account.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-34293
Published : Oct. 24, 2025, 10:15 p.m. | 1 hour, 5 minutes ago
Description : GN4 Publishing System versions prior to 2.6 contain an insecure direct object reference (IDOR) vulnerability via the API. Authenticated requests to the API's object endpoints allow an authenticated user to request arbitrary user IDs and receive sensitive account data for those users, including the stored password and the account's security question and answer. The exposed recovery data and encrypted password may be used to reset or take over the target account.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-4106 - WatchGuard Firebox leftover debug code vulnerability
CVE ID : CVE-2025-4106
Published : Oct. 24, 2025, 10:15 p.m. | 1 hour, 5 minutes ago
Description : An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0 before 12.11.2.
Severity: 8.9 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-4106
Published : Oct. 24, 2025, 10:15 p.m. | 1 hour, 5 minutes ago
Description : An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0 before 12.11.2.
Severity: 8.9 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-62711 - Wasmtime vulnerable to segfault when using component resources
CVE ID : CVE-2025-62711
Published : Oct. 24, 2025, 10:15 p.m. | 1 hour, 5 minutes ago
Description : Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a segfault or assert failure. Wasmtime 38.0.3 has been released and is patched to fix this issue. There are no workarounds.
Severity: 2.1 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-62711
Published : Oct. 24, 2025, 10:15 p.m. | 1 hour, 5 minutes ago
Description : Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a segfault or assert failure. Wasmtime 38.0.3 has been released and is patched to fix this issue. There are no workarounds.
Severity: 2.1 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-12194 - Bouncy Castle for Java FIPS and LTS Excessive Allocation
CVE ID : CVE-2025-12194
Published : Oct. 24, 2025, 10:51 p.m. | 29 minutes ago
Description : Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All (API modules), Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeCFB.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeGCM.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/SHA256NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeEngine.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeCBC.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeCTR.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCFB.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeGCM.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeEngine.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCBC.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeGCMSIV.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCCM.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCTR.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA256NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA224NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA3NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHAKENativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA512NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA384NativeDigest.java. This issue affects Bouncy Castle for Java FIPS: from 2.1.0 through 2.1.1; Bouncy Castle for Java LTS: from 2.73.0 through 3.73.7.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-12194
Published : Oct. 24, 2025, 10:51 p.m. | 29 minutes ago
Description : Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All (API modules), Legion of the Bouncy Castle Inc. Bouncy Castle for Java LTS bcprov-lts8on on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeCFB.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeGCM.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/SHA256NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeEngine.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeCBC.java, core/src/main/jdk1.9/org/bouncycastle/crypto/fips/AESNativeCTR.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCFB.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeGCM.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeEngine.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCBC.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeGCMSIV.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCCM.java, core/src/main/jdk1.9/org/bouncycastle/crypto/engines/AESNativeCTR.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA256NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA224NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA3NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHAKENativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA512NativeDigest.java, core/src/main/jdk1.9/org/bouncycastle/crypto/digests/SHA384NativeDigest.java. This issue affects Bouncy Castle for Java FIPS: from 2.1.0 through 2.1.1; Bouncy Castle for Java LTS: from 2.73.0 through 3.73.7.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-34500 - Shuffle Master Deck Mate 2 Insecure Update Chain
CVE ID : CVE-2025-34500
Published : Oct. 24, 2025, 11:02 p.m. | 18 minutes ago
Description : Deck Mate 2's firmware update mechanism accepts packages without cryptographic signature verification, encrypts them with a single hard-coded AES key shared across devices, and uses a truncated HMAC for integrity validation. Attackers with access to the update interface - typically via the unit's USB update port - can craft or modify firmware packages to execute arbitrary code as root, allowing persistent compromise of the device's integrity and deck randomization process. Physical or on-premises access remains the most likely attack path, though network-exposed or telemetry-enabled deployments could theoretically allow remote exploitation if misconfigured. The vendor confirmed that firmware updates have been issued to correct these update-chain weaknesses and that USB update access has been disabled on affected units.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-34500
Published : Oct. 24, 2025, 11:02 p.m. | 18 minutes ago
Description : Deck Mate 2's firmware update mechanism accepts packages without cryptographic signature verification, encrypts them with a single hard-coded AES key shared across devices, and uses a truncated HMAC for integrity validation. Attackers with access to the update interface - typically via the unit's USB update port - can craft or modify firmware packages to execute arbitrary code as root, allowing persistent compromise of the device's integrity and deck randomization process. Physical or on-premises access remains the most likely attack path, though network-exposed or telemetry-enabled deployments could theoretically allow remote exploitation if misconfigured. The vendor confirmed that firmware updates have been issued to correct these update-chain weaknesses and that USB update access has been disabled on affected units.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-34502 - Shuffle Master Deck Mate 2 Missing Secure Boot
CVE ID : CVE-2025-34502
Published : Oct. 24, 2025, 11:04 p.m. | 16 minutes ago
Description : Deck Mate 2 lacks a verified secure-boot chain and runtime integrity validation for its controller and display modules. Without cryptographic boot verification, an attacker with physical access can modify or replace the bootloader, kernel, or filesystem and gain persistent code execution on reboot. This weakness allows long-term firmware tampering that survives power cycles. The vendor indicates that more recent firmware updates strengthen update-chain integrity and disable physical update ports to mitigate related attack avenues.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-34502
Published : Oct. 24, 2025, 11:04 p.m. | 16 minutes ago
Description : Deck Mate 2 lacks a verified secure-boot chain and runtime integrity validation for its controller and display modules. Without cryptographic boot verification, an attacker with physical access can modify or replace the bootloader, kernel, or filesystem and gain persistent code execution on reboot. This weakness allows long-term firmware tampering that survives power cycles. The vendor indicates that more recent firmware updates strengthen update-chain integrity and disable physical update ports to mitigate related attack avenues.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-34503 - Shuffle Master Deck Mate 1 Unauthenticated EEPROM Firmware Execution
CVE ID : CVE-2025-34503
Published : Oct. 24, 2025, 11:04 p.m. | 16 minutes ago
Description : Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or integrity. An attacker with physical access can replace or reflash the EEPROM to run arbitrary code that persists across reboots. Because this design predates modern secure-boot or signed-update mechanisms, affected systems should be physically protected or retired from service. The vendor has not indicated that firmware updates are available for this legacy model.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-34503
Published : Oct. 24, 2025, 11:04 p.m. | 16 minutes ago
Description : Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or integrity. An attacker with physical access can replace or reflash the EEPROM to run arbitrary code that persists across reboots. Because this design predates modern secure-boot or signed-update mechanisms, affected systems should be physically protected or retired from service. The vendor has not indicated that firmware updates are available for this legacy model.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-11760 - eRoom – Webinar & Meeting Plugin for Zoom, Google Meet, Microsoft Teams <= 1.5.6 - Unauthenticated Sensitive Information Exposure
CVE ID : CVE-2025-11760
Published : Oct. 25, 2025, 2:15 a.m. | 1 hour, 8 minutes ago
Description : The eRoom – Webinar & Meeting Plugin for Zoom, Google Meet, Microsoft Teams plugin for WordPress is vulnerable to exposure of sensitive information in all versions up to, and including, 1.5.6. This is due to the plugin exposing Zoom SDK secret keys in client-side JavaScript within the meeting view template. This makes it possible for unauthenticated attackers to extract the sdk_secret value, which should remain server-side, compromising the security of the Zoom integration and allowing attackers to generate valid JWT signatures for unauthorized meeting access.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-11760
Published : Oct. 25, 2025, 2:15 a.m. | 1 hour, 8 minutes ago
Description : The eRoom – Webinar & Meeting Plugin for Zoom, Google Meet, Microsoft Teams plugin for WordPress is vulnerable to exposure of sensitive information in all versions up to, and including, 1.5.6. This is due to the plugin exposing Zoom SDK secret keys in client-side JavaScript within the meeting view template. This makes it possible for unauthenticated attackers to extract the sdk_secret value, which should remain server-side, compromising the security of the Zoom integration and allowing attackers to generate valid JWT signatures for unauthorized meeting access.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-11244 - Password Protected <= 2.7.11 - Unauthenticated Authorization Bypass via IP Address Spoofing
CVE ID : CVE-2025-11244
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The Password Protected plugin for WordPress is vulnerable to authorization bypass via IP address spoofing in all versions up to, and including, 2.7.11. This is due to the plugin trusting client-controlled HTTP headers (such as X-Forwarded-For, HTTP_CLIENT_IP, and similar headers) to determine user IP addresses in the `pp_get_ip_address()` function when the "Use transients" feature is enabled. This makes it possible for attackers to bypass authorization by spoofing these headers with the IP address of a legitimately authenticated user, granted the "Use transients" option is enabled (non-default configuration) and the site is not behind a CDN or reverse proxy that overwrites these headers.
Severity: 3.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-11244
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The Password Protected plugin for WordPress is vulnerable to authorization bypass via IP address spoofing in all versions up to, and including, 2.7.11. This is due to the plugin trusting client-controlled HTTP headers (such as X-Forwarded-For, HTTP_CLIENT_IP, and similar headers) to determine user IP addresses in the `pp_get_ip_address()` function when the "Use transients" feature is enabled. This makes it possible for attackers to bypass authorization by spoofing these headers with the IP address of a legitimately authenticated user, granted the "Use transients" option is enabled (non-default configuration) and the site is not behind a CDN or reverse proxy that overwrites these headers.
Severity: 3.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-11269 - Product Filter by WBW <= 3.0.0 - Missing Authorization to Unauthenticated Settings Update
CVE ID : CVE-2025-11269
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The Product Filter by WBW plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'approveNotice' action in all versions up to, and including, 3.0.0. This makes it possible for unauthenticated attackers to update the plugin's settings.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-11269
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The Product Filter by WBW plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'approveNotice' action in all versions up to, and including, 3.0.0. This makes it possible for unauthenticated attackers to update the plugin's settings.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-11564 - Tutor LMS – eLearning and online course solution <= 3.8.3 - Missing Authorization to Unauthenticated Payment Status Update
CVE ID : CVE-2025-11564
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check while verifying webhook signatures on the "verifyAndCreateOrderData" function in all versions up to, and including, 3.8.3. This makes it possible for unauthenticated attackers to bypass payment verification and mark orders as paid by submitting forged webhook requests with `payment_type` set to 'recurring'.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-11564
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check while verifying webhook signatures on the "verifyAndCreateOrderData" function in all versions up to, and including, 3.8.3. This makes it possible for unauthenticated attackers to bypass payment verification and mark orders as paid by submitting forged webhook requests with `payment_type` set to 'recurring'.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-11879 - GenerateBlocks <= 2.1.1 - Improper Authorization to Authenticated (Contributor+) Arbitrary Options Disclosure
CVE ID : CVE-2025-11879
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The GenerateBlocks plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_option_rest' function in all versions up to, and including, 2.1.1. This makes it possible for authenticated attackers, with contributor level access and above, to read arbitrary WordPress options, including sensitive information such as SMTP credentials, API keys, and other data stored by other plugins.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-11879
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The GenerateBlocks plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_option_rest' function in all versions up to, and including, 2.1.1. This makes it possible for authenticated attackers, with contributor level access and above, to read arbitrary WordPress options, including sensitive information such as SMTP credentials, API keys, and other data stored by other plugins.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-11888 - ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution <= 4.8.4 - Incorrect Authorization to Authenticated (Editor+) License Status Update
CVE ID : CVE-2025-11888
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution plugin for WordPress is vulnerable to unauthorized modification of data due to an insufficient capability check on the post_deactive() function and post_activate() function in all versions up to, and including, 4.8.4. This makes it possible for authenticated attackers, with Editor-level access and above, to activate and deactivate licenses.
Severity: 2.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-11888
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution plugin for WordPress is vulnerable to unauthorized modification of data due to an insufficient capability check on the post_deactive() function and post_activate() function in all versions up to, and including, 4.8.4. This makes it possible for authenticated attackers, with Editor-level access and above, to activate and deactivate licenses.
Severity: 2.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-12005 - WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress <= 8.5.41 - Improper Authorization to Authenticated (Contributor+) Plugin Settings Update
CVE ID : CVE-2025-12005
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress plugin for WordPress is vulnerable to unauthorized access of data in all versions up to, and including, 8.5.41. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with contributor level access and above, to modify sensitive plugin options.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-12005
Published : Oct. 25, 2025, 6:15 a.m. | 1 hour, 12 minutes ago
Description : The WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress plugin for WordPress is vulnerable to unauthorized access of data in all versions up to, and including, 8.5.41. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with contributor level access and above, to modify sensitive plugin options.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...