|
421
|
- |
|
-
|
-
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in web-mv.de ResAds allows SQL Injection.This issue affects ResAds: from n/a through 2.0.5.
|
CWE-89
SQL Injection
|
CVE-2025-23779
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
422
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Pravin Durugkar User Sync ActiveCampaign allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Sync ActiveCampaign: fr…
|
CWE-862
Missing Authorization
|
CVE-2025-23778
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
423
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Willows Consulting Ltd. GDPR Personal Data Reports allows Stored XSS.This issue affects GDPR Pers…
|
CWE-79
Cross-site Scripting
|
CVE-2025-23777
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
424
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Thorn Technologies LLC Cache Sniper for Nginx allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cache Sniper for Nginx:…
|
CWE-862
Missing Authorization
|
CVE-2025-23776
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
425
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WWP GMAPS for WPBakery Page Builder Free allows Stored XSS.This issue affects GMAPS for WPBakery …
|
CWE-79
Cross-site Scripting
|
CVE-2025-23775
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
426
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eugenio Petullà imaGenius allows Stored XSS.This issue affects imaGenius: from n/a through 1.7.
|
CWE-79
Cross-site Scripting
|
CVE-2025-23772
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
427
|
- |
|
-
|
-
|
Cross-Site Request Forgery (CSRF) vulnerability in W3speedster W3SPEEDSTER allows Cross Site Request Forgery.This issue affects W3SPEEDSTER: from n/a through 7.33.
|
CWE-352
Origin Validation Error
|
CVE-2025-23765
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
428
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Ujjaval Jani Copy Move Posts allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Copy Move Posts: from n/a through 1.6.
|
CWE-862
Missing Authorization
|
CVE-2025-23764
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
429
|
- |
|
-
|
-
|
Missing Authorization vulnerability in Alex Volkov Woo Tuner allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Woo Tuner: from n/a through 0.1.2.
|
CWE-862
Missing Authorization
|
CVE-2025-23761
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
430
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Alex Volkov Chatter allows Stored XSS. This issue affects Chatter: from n/a through 1.0.1.
|
CWE-79
Cross-site Scripting
|
CVE-2025-23760
|
2025-01-17 06:15 |
2025-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
