Lista CVE - 2025 / Aprile
Visualizzazione 201 - 300 di 4038 CVE per Aprile 2025 (Pagina 3 di 41)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2025-31821 | 2025-04-01 | WordPress Integration of Zoho CRM and Contact Form 7 plugin <= 1.0.6 - Open Redirection Vulnerability |
| CVE-2025-31822 | 2025-04-01 | WordPress WordPress Simple HTML Sitemap plugin <= 3.2 - Broken Access Control vulnerability |
| CVE-2025-31823 | 2025-04-01 | WordPress WPoperation Elementor Addons plugin 1.1.9 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31824 | 2025-04-01 | WordPress WP Optin Wheel Plugin <= 1.4.7 - Server Side Request Forgery (SSRF) vulnerability |
| CVE-2025-31826 | 2025-04-01 | WordPress Ni WooCommerce Cost Of Goods plugin <= 3.2.8 - Broken Access Control vulnerability |
| CVE-2025-31828 | 2025-04-01 | WordPress Easy!Appointments plugin <= 1.4.2 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability |
| CVE-2025-31829 | 2025-04-01 | WordPress ShopCred plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31830 | 2025-04-01 | WordPress Printus Plugin <= 1.2.6 - Broken Access Control vulnerability |
| CVE-2025-31831 | 2025-04-01 | WordPress AtomChat plugin <= 1.1.6 - Broken Access Control vulnerability |
| CVE-2025-31832 | 2025-04-01 | WordPress ACF City Selector plugin <= 1.16.0 - Sensitive Data Exposure vulnerability |
| CVE-2025-31833 | 2025-04-01 | WordPress JobBoard Job listing plugin Plugin <= 1.2.7 - Insecure Direct Object References (IDOR) vulnerability |
| CVE-2025-31834 | 2025-04-01 | WordPress JobBoard Job listing plugin Plugin <= 1.2.7 - Broken Access Control vulnerability |
| CVE-2025-31835 | 2025-04-01 | WordPress WP Plugin Info Card plugin <= 5.2.5 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31836 | 2025-04-01 | WordPress Review Manager Plugin <= 2.2.0 - Broken Access Control vulnerability |
| CVE-2025-31837 | 2025-04-01 | WordPress WP Proposals plugin <= 2.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31838 | 2025-04-01 | WordPress Eventbee RSVP Widget plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31839 | 2025-04-01 | WordPress Footer Contacts Bar Plugin <= 1.8 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-31840 | 2025-04-01 | WordPress Simple Fixed Notice Plugin <= 1.6 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-31842 | 2025-04-01 | WordPress Viral Loops WP Integration Plugin <= 3.4.0 - Sensitive Data Exposure vulnerability |
| CVE-2025-31843 | 2025-04-01 | WordPress OpenAI Tools for WordPress & WooCommerce plugin <= 2.1.5 - Broken Access Control vulnerability |
| CVE-2025-31844 | 2025-04-01 | WordPress Magical Blocks plugin <= 1.0.10 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31845 | 2025-04-01 | WordPress Theme Duplicator Plugin <= 1.1 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-31846 | 2025-04-01 | WordPress Theater for WordPress plugin <= 0.18.7 - Broken Access Control vulnerability |
| CVE-2025-31847 | 2025-04-01 | WordPress mFolio Lite plugin <= 1.2.2 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31848 | 2025-04-01 | WordPress WordPress Adverts Plugin plugin <= 1.4 - Broken Access Control vulnerability |
| CVE-2025-31849 | 2025-04-01 | WordPress Nemesis All-in-One | Newspaper Builder Elementor Extention plugin <= 1.1.0 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31850 | 2025-04-01 | WordPress PDF Generator Addon for Elementor Page Builder plugin <= 1.7.5 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31851 | 2025-04-01 | WordPress Beds24 Online Booking plugin <= 2.0.26 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31852 | 2025-04-01 | WordPress Bulk Product Sync plugin <= 8.6 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-31853 | 2025-04-01 | WordPress Smartarget Popup Plugin <= 1.4 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31854 | 2025-04-01 | WordPress Simple Sticky Add To Cart For WooCommerce plugin <= 1.4.5 - Broken Access Control vulnerability |
| CVE-2025-31855 | 2025-04-01 | WordPress SMM API plugin <= 6.0.27 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31856 | 2025-04-01 | WordPress Export All Post Meta Plugin <= 1.2.1 - Broken Access Control vulnerability |
| CVE-2025-31857 | 2025-04-01 | WordPress Directorist AddonsKit for Elementor plugin <= 1.1.6 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31859 | 2025-04-01 | WordPress Feedbucket – Website Feedback Tool Plugin <= 1.0.6 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-31860 | 2025-04-01 | WordPress WP AdCenter plugin <= 2.5.9 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31861 | 2025-04-01 | WordPress Perfect Font Awesome Integration Plugin <= 2.2 - Stored Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31862 | 2025-04-01 | WordPress Job Board Manager Plugin <= 2.1.60 - Broken Access Control vulnerability |
| CVE-2025-31863 | 2025-04-01 | WordPress Agency Toolkit plugin <= 1.0.23 - Broken Access Control vulnerability |
| CVE-2025-31864 | 2025-04-01 | WordPress Beam me up Scotty – Back to Top Button plugin <= 1.0.23 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31865 | 2025-04-01 | WordPress CartBoss plugin <= 4.1.2 - Broken Access Control vulnerability |
| CVE-2025-31866 | 2025-04-01 | WordPress ShipDepot for WooCommerce plugin <= 1.2.19 - Broken Access Control vulnerability |
| CVE-2025-31867 | 2025-04-01 | WordPress JS Job Manager Plugin <= 2.0.2 - Insecure Direct Object References (IDOR) vulnerability |
| CVE-2025-31868 | 2025-04-01 | WordPress JS Job Manager plugin <= 2.0.2 - Broken Access Control vulnerability |
| CVE-2025-31869 | 2025-04-01 | WordPress Black Widgets For Elementor plugin <= 1.3.9 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31870 | 2025-04-01 | WordPress WP AutoKeyword plugin <= 1.0 - Arbitrary Content Deletion vulnerability |
| CVE-2025-31871 | 2025-04-01 | WordPress WP Clone any post type Plugin <= 3.4 - Open Redirect vulnerability |
| CVE-2025-31872 | 2025-04-01 | WordPress WP Clone any post type Plugin <= 3.4 - Broken Access Control vulnerability |
| CVE-2025-31873 | 2025-04-01 | WordPress SheetDB Plugin <= 1.3.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31874 | 2025-04-01 | WordPress WebberZone Snippetz plugin <= 2.1.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31875 | 2025-04-01 | WordPress FancyPost plugin <= 6.0.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31877 | 2025-04-01 | WordPress RestroPress plugin <= 3.1.8.4 - Broken Access Control vulnerability |
| CVE-2025-31878 | 2025-04-01 | WordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 - Settings Change vulnerability |
| CVE-2025-31879 | 2025-04-01 | WordPress Barcode Generator for WooCommerce plugin <= 2.0.4 - Settings Change vulnerability |
| CVE-2025-31880 | 2025-04-01 | WordPress Pearl plugin <= 1.3.9 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-31881 | 2025-04-01 | WordPress Pearl plugin <= 1.3.9 - Broken Access Control vulnerability |
| CVE-2025-31882 | 2025-04-01 | WordPress WordPress Webinar Plugin <= 1.33.27 - Broken Access Control vulnerability |
| CVE-2025-31883 | 2025-04-01 | WordPress WebinarPress plugin <= 1.33.27 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31884 | 2025-04-01 | WordPress Norse Rune Oracle Plugin plugin <= 1.4.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31885 | 2025-04-01 | WordPress Hyperlink Group Block plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31886 | 2025-04-01 | WordPress Social proof testimonials and reviews by Repuso plugin <= 5.21 - Broken Access Control vulnerability |
| CVE-2025-31887 | 2025-04-01 | WordPress MyBookProgress plugin <= 1.0.8 - Broken Access Control vulnerability |
| CVE-2025-31888 | 2025-04-01 | WordPress WP Multi Store Locator Plugin <= 2.5.2 - Cross Site Request Forgery (CSRF) vulnerability |
| CVE-2025-31890 | 2025-04-01 | WordPress Simple Map No Api plugin <= 1.9 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31891 | 2025-04-01 | WordPress Gosign – Posts Slider Block plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31892 | 2025-04-01 | WordPress WP Crowdfunding plugin <= 2.1.13 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31894 | 2025-04-01 | WordPress Ebook Downloader plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31895 | 2025-04-01 | WordPress ABC Notation Plugin <= 6.1.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31897 | 2025-04-01 | WordPress Arrow Custom Feed for Twitter plugin <= 1.5.3 - Cross Site Scripting (XSS) vulnerability |
| CVE-2025-31904 | 2025-04-01 | WordPress Ebook Downloader plugin <= 1.0 - CSRF to Stored XSS vulnerability |
| CVE-2025-31906 | 2025-04-01 | WordPress WP Profitshare Plugin <= 1.4.9 - CSRF to Stored XSS vulnerability |
| CVE-2025-31908 | 2025-04-01 | WordPress JSON Structuring Markup plugin <= 0.1 - CSRF to Stored XSS vulnerability |
| CVE-2025-31910 | 2025-04-01 | WordPress BookingPress Plugin <= 1.1.28 - SQL Injection vulnerability |
| CVE-2025-31121 | 2025-04-01 | OpenEMR allows XSS in Patient Image feature |
| CVE-2025-31131 | 2025-04-01 | Path Traversal allowing arbitrary read of files in Yeswiki |
| CVE-2025-31132 | 2025-04-01 | Raven allows Remote Code Execution due to improper validation |
| CVE-2025-21894 | 2025-04-01 | net: enetc: VFs do not support HWTSTAMP_TX_ONESTEP_SYNC |
| CVE-2025-21895 | 2025-04-01 | perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list |
| CVE-2025-21896 | 2025-04-01 | fuse: revert back to __readahead_folio() for readahead |
| CVE-2025-21897 | 2025-04-01 | sched_ext: Fix pick_task_scx() picking non-queued tasks when it's called without balance() |
| CVE-2025-21898 | 2025-04-01 | ftrace: Avoid potential division by zero in function_stat_show() |
| CVE-2025-21899 | 2025-04-01 | tracing: Fix bad hist from corrupting named_triggers list |
| CVE-2025-21900 | 2025-04-01 | NFSv4: Fix a deadlock when recovering state on a sillyrenamed file |
| CVE-2025-21901 | 2025-04-01 | RDMA/bnxt_re: Add sanity checks on rdev validity |
| CVE-2025-21902 | 2025-04-01 | acpi: typec: ucsi: Introduce a ->poll_cci method |
| CVE-2025-21903 | 2025-04-01 | mctp i3c: handle NULL header address |
| CVE-2025-21904 | 2025-04-01 | caif_virtio: fix wrong pointer check in cfv_probe() |
| CVE-2025-21905 | 2025-04-01 | wifi: iwlwifi: limit printed string from FW file |
| CVE-2025-21906 | 2025-04-01 | wifi: iwlwifi: mvm: clean up ROC on failure |
| CVE-2025-21907 | 2025-04-01 | mm: memory-failure: update ttu flag inside unmap_poisoned_folio |
| CVE-2025-21908 | 2025-04-01 | NFS: fix nfs_release_folio() to not deadlock via kcompactd writeback |
| CVE-2025-21909 | 2025-04-01 | wifi: nl80211: reject cooked mode if it is set along with other flags |
| CVE-2025-21910 | 2025-04-01 | wifi: cfg80211: regulatory: improve invalid hints checking |
| CVE-2025-21911 | 2025-04-01 | drm/imagination: avoid deadlock on fence release |
| CVE-2025-21912 | 2025-04-01 | gpio: rcar: Use raw_spinlock to protect register access |
| CVE-2025-21913 | 2025-04-01 | x86/amd_nb: Use rdmsr_safe() in amd_get_mmconfig_range() |
| CVE-2025-21914 | 2025-04-01 | slimbus: messaging: Free transaction ID in delayed interrupt scenario |
| CVE-2025-21915 | 2025-04-01 | cdx: Fix possible UAF error in driver_override_show() |
| CVE-2025-21916 | 2025-04-01 | usb: atm: cxacru: fix a flaw in existing endpoint checks |
| CVE-2025-21917 | 2025-04-01 | usb: renesas_usbhs: Flush the notify_hotplug_work |