Lista CVE - 2025 / Ottobre
Visualizzazione 2901 - 3000 di 4280 CVE per Ottobre 2025 (Pagina 30 di 43)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2025-49927 | 2025-10-22 | WordPress JetWooBuilder plugin <= 2.1.20.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49928 | 2025-10-22 | WordPress JetWooBuilder plugin <= 2.1.20 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49929 | 2025-10-22 | WordPress Ultimate Blocks plugin <= 3.3.6 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49930 | 2025-10-22 | WordPress JetSearch plugin <= 3.5.10 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49931 | 2025-10-22 | WordPress JetSearch plugin <= 3.5.10 - SQL Injection vulnerability |
| CVE-2025-49932 | 2025-10-22 | WordPress JetBlog plugin <= 2.4.4.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49933 | 2025-10-22 | WordPress JetBlog plugin <= 2.4.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49934 | 2025-10-22 | WordPress JetBlocks For Elementor plugin <= 1.3.18 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49935 | 2025-10-22 | WordPress WoodMart theme < 8.3.2 - Local File Inclusion vulnerability |
| CVE-2025-49936 | 2025-10-22 | WordPress WoodMart theme < 8.3.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49937 | 2025-10-22 | WordPress Smash Balloon Social Post Feed plugin <= 4.3.2 - Broken Access Control vulnerability |
| CVE-2025-49938 | 2025-10-22 | WordPress JetEngine plugin <= 3.7.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49939 | 2025-10-22 | WordPress JetElements For Elementor plugin <= 2.7.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49940 | 2025-10-22 | WordPress Fusion Builder plugin <= 3.13.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49944 | 2025-10-22 | WordPress WPCode Content Ratio plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49945 | 2025-10-22 | WordPress Shortcode Generator plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49946 | 2025-10-22 | WordPress Auto Login After Registration plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49947 | 2025-10-22 | WordPress WooCommerce Registration Fields Plugin - Custom Signup Fields plugin <= 3.2.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49948 | 2025-10-22 | WordPress WP Super Edit plugin <= 2.5.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49949 | 2025-10-22 | WordPress Templazee plugin <= 1.0.2 - Broken Access Control Vulnerability |
| CVE-2025-49950 | 2025-10-22 | WordPress Official Integration for Billingo Plugin <= 4.2.5 - Privilege Escalation Vulnerability |
| CVE-2025-49951 | 2025-10-22 | WordPress gAppointments Plugin <= 1.14.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49952 | 2025-10-22 | WordPress Houzez Theme <= 4.1.1 - Insecure Direct Object References (IDOR) Vulnerability |
| CVE-2025-49953 | 2025-10-22 | WordPress ShareBang, Ultimate Social Share Buttons for WordPress Plugin <= 1.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49954 | 2025-10-22 | WordPress WP-Click-Tracker Plugin <= 0.7.3 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49955 | 2025-10-22 | WordPress WP Smart Flexslider Plugin <= 2.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49956 | 2025-10-22 | WordPress Fade Slider Plugin <= 2.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49957 | 2025-10-22 | WordPress Email Attachment by Order Status & Products Plugin <= 1.0.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49958 | 2025-10-22 | WordPress Robokassa payment gateway for Woocommerce plugin <= 1.8.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49959 | 2025-10-22 | WordPress bbPress Move Topics plugin <= 1.1.6 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49960 | 2025-10-22 | WordPress LeadBI Plugin for WordPress plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49961 | 2025-10-22 | WordPress Breeze Checkout plugin <= 1.4.0 - Broken Access Control vulnerability |
| CVE-2025-49962 | 2025-10-22 | WordPress bbPress Notify plugin <= 2.19.4 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-49963 | 2025-10-22 | WordPress Simple Stripe Checkout plugin <= 1.1.28 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-49992 | 2025-10-22 | WordPress LearnPress Export Import Plugin <= 4.0.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52734 | 2025-10-22 | WordPress CropRefine Plugin <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52735 | 2025-10-22 | WordPress NextMove Lite plugin <= 2.21.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52736 | 2025-10-22 | WordPress Finale Lite Plugin <= 2.20.0 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52737 | 2025-10-22 | WordPress WP Store Locator plugin <= 2.2.260 - PHP Object Injection vulnerability |
| CVE-2025-52738 | 2025-10-22 | WordPress Wikipedia Preview Plugin <= 1.15.0 - Broken Access Control Vulnerability |
| CVE-2025-52740 | 2025-10-22 | WordPress Boldermail Plugin <= 2.4.0 - PHP Object Injection Vulnerability |
| CVE-2025-52741 | 2025-10-22 | WordPress Post Connector Plugin <= 1.0.11 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52742 | 2025-10-22 | WordPress Pets Plugin <= 1.4.1 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52743 | 2025-10-22 | WordPress oik-privacy-policy Plugin <= 1.4.9 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52748 | 2025-10-22 | WordPress Directory Pro plugin <= 2.5.5 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-52749 | 2025-10-22 | WordPress Uji Countdown plugin <= 2.3.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52750 | 2025-10-22 | WordPress Emu2 plugin <= 0.83b - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52751 | 2025-10-22 | WordPress Slide Puzzle plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52752 | 2025-10-22 | WordPress IDonatePro plugin <= 2.1.9 - Sensitive Data Exposure vulnerability |
| CVE-2025-52753 | 2025-10-22 | WordPress Contact Form by Supsystic plugin <= 1.7.35 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52754 | 2025-10-22 | WordPress Sello ChannelConnector plugin <= 1.6.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52755 | 2025-10-22 | WordPress Child Themes plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52756 | 2025-10-22 | WordPress WP Last Modified Info plugin <= 1.9.2 - Remote Code Execution (RCE) vulnerability |
| CVE-2025-52757 | 2025-10-22 | WordPress SUMO Memberships for WooCommerce plugin <= 7.6.0 - Arbitrary Content Deletion vulnerability |
| CVE-2025-52758 | 2025-10-22 | WordPress Zippy plugin <= 1.7.0 - Arbitrary File Upload vulnerability |
| CVE-2025-52760 | 2025-10-22 | WordPress MultiSite Clone Duplicator plugin <= 1.5.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52763 | 2025-10-22 | WordPress Nifty Backups plugin <= 1.08 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-52770 | 2025-10-22 | WordPress Hello Followers plugin <= 2.5 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53218 | 2025-10-22 | WordPress AppExperts plugin <= 1.4.5 - Sensitive Data Exposure vulnerability |
| CVE-2025-53229 | 2025-10-22 | WordPress RockON DJ theme <= 3.3 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53232 | 2025-10-22 | WordPress WP Gmail SMTP plugin <= 1.0.7 - Sensitive Data Exposure vulnerability |
| CVE-2025-53234 | 2025-10-22 | WordPress UDesign Core plugin <= 4.14.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53236 | 2025-10-22 | WordPress UDesign Core plugin <= 4.14.0 - Broken Access Control vulnerability |
| CVE-2025-53238 | 2025-10-22 | WordPress Toast Mobile Menu plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53297 | 2025-10-22 | WordPress Woocommerce Envato Affiliates plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53350 | 2025-10-22 | WordPress Calendar Plus plugin <= 1.2.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53351 | 2025-10-22 | WordPress Fidelo Snippet plugin <= 1.12 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53352 | 2025-10-22 | WordPress Grid Plus plugin <= 3.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53420 | 2025-10-22 | WordPress WPLMS plugin <= 1.9.9.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53421 | 2025-10-22 | WordPress Accordion plugin <= 2.3.14 - Broken Access Control vulnerability |
| CVE-2025-53422 | 2025-10-22 | WordPress WhatsApp Chat for WordPress and WooCommerce plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53423 | 2025-10-22 | WordPress Triss theme <= 2.6 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53424 | 2025-10-22 | WordPress WooCommerce Orders & Customers Exporter plugin <= 5.4 - Broken Access Control vulnerability |
| CVE-2025-53425 | 2025-10-22 | WordPress Dokan plugin <= 4.1.2 - Privilege Escalation vulnerability |
| CVE-2025-53426 | 2025-10-22 | WordPress Likert Survey Master plugin <= 0.8.0.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53427 | 2025-10-22 | WordPress SEO Pyramid plugin <= 1.9.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-53428 | 2025-10-22 | WordPress Simple User Registration plugin <= 6.4 - Privilege Escalation vulnerability |
| CVE-2025-58916 | 2025-10-22 | WordPress Author: Munzir plugin <= 0.9 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-58921 | 2025-10-22 | WordPress WP Tactical Popup plugin <= 1.1 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-58955 | 2025-10-22 | WordPress Karzo theme < 2.6 - Local File Inclusion vulnerability |
| CVE-2025-58958 | 2025-10-22 | WordPress SmilePure Theme < 1.8.5 - Local File Inclusion Vulnerability |
| CVE-2025-58959 | 2025-10-22 | WordPress Taskbot plugin <= 6.4 - Arbitrary File Deletion vulnerability |
| CVE-2025-58961 | 2025-10-22 | WordPress CF7 Auto Responder Addon plugin <= 2.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-58963 | 2025-10-22 | WordPress Medcity theme < 1.1.9 - Arbitrary File Upload vulnerability |
| CVE-2025-58966 | 2025-10-22 | WordPress NEX-Forms LITE plugin < 8.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-58967 | 2025-10-22 | WordPress Businext theme < 2.4.4 - Local File Inclusion vulnerability |
| CVE-2025-58970 | 2025-10-22 | WordPress Doctreat theme <= 1.6.7 - Content Injection vulnerability |
| CVE-2025-58971 | 2025-10-22 | WordPress Doctreat theme <= 1.6.7 - Cross Site Scripting (XSS) Vulnerability |
| CVE-2025-59004 | 2025-10-22 | WordPress WC Return products plugin <= 1.5 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-59006 | 2025-10-22 | WordPress Easy Woocommerce Customizer plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability |
| CVE-2025-59007 | 2025-10-22 | WordPress TF Woo Product Grid Addon For Elementor Plugin <= 1.0.1 - Deserialization of untrusted data Vulnerability |
| CVE-2025-59550 | 2025-10-22 | WordPress Xcare theme < 6.5 - Local File Inclusion vulnerability |
| CVE-2025-59555 | 2025-10-22 | WordPress Medizin Theme < 1.9.7 - Local File Inclusion Vulnerability |
| CVE-2025-59557 | 2025-10-22 | WordPress Learts Addons Plugin < 1.7.5 - SQL Injection Vulnerability |
| CVE-2025-59558 | 2025-10-22 | WordPress Billey Theme < 2.1.6 - Local File Inclusion Vulnerability |
| CVE-2025-59564 | 2025-10-22 | WordPress EduMall Theme < 4.4.5 - Local File Inclusion Vulnerability |
| CVE-2025-59566 | 2025-10-22 | WordPress Workreap (theme's plugin) plugin <= 3.3.5 - Arbitrary File Deletion vulnerability |
| CVE-2025-59571 | 2025-10-22 | WordPress WorkScout-Core plugin < 1.7.06 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-59575 | 2025-10-22 | WordPress MasterStudy LMS plugin <= 3.6.20 - Sensitive Data Exposure vulnerability |
| CVE-2025-59578 | 2025-10-22 | WordPress ShopMagic plugin <= 4.5.6 - Sensitive Data Exposure vulnerability |