|
2961
|
8.1 |
HIGH
Network
|
-
|
-
|
Incorrect Privilege Assignment vulnerability in wordpresschef Salon Booking System Pro salon-booking-plugin-pro allows Privilege Escalation.This issue affects Salon Booking System Pro: from n/a throu…
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2026-25334
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2962
|
8.1 |
HIGH
Network
|
-
|
-
|
La vulnerabilidad de Asignación Incorrecta de Privilegios en wordpresschef Salon Booking System Pro salon-booking-plugin-pro permite la escalada de privilegios. Este problema afecta a Salon Booking S…
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2026-25334
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2963
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Insertion of Sensitive Information Into Sent Data vulnerability in Syed Balkhi Contact Form by WPForms wpforms-lite allows Retrieve Embedded Sensitive Data.This issue affects Contact Form by WPForms:…
|
CWE-201
Insertion of Sensitive Information Into Sent Data
|
CVE-2026-25339
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2964
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Inserción de Información Sensible en Datos Enviados vulnerabilidad en Formulario de Contacto de Syed Balkhi de WPForms wpforms-lite permite Recuperar Datos Sensibles Incrustados. Este problema afecta…
|
CWE-201
Insertion of Sensitive Information Into Sent Data
|
CVE-2026-25339
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2965
|
9.3 |
CRITICAL
Network
|
-
|
-
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NooTheme Jobmonster noo-jobmonster allows Blind SQL Injection.This issue affects Jobmonster: from…
|
CWE-89
SQL Injection
|
CVE-2026-25340
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2966
|
9.3 |
CRITICAL
Network
|
-
|
-
|
Vulnerabilidad de Neutralización Incorrecta de Elementos Especiales utilizados en un Comando SQL ('Inyección SQL') en NooTheme Jobmonster noo-jobmonster permite Inyección SQL Ciega. Este problema afe…
|
CWE-89
SQL Injection
|
CVE-2026-25340
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2967
|
7.1 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RSJoomla! RSFirewall! rsfirewall allows Stored XSS.This issue affects RSFirewall!: from n/a throu…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25341
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2968
|
7.1 |
HIGH
Network
|
-
|
-
|
Neutralización Incorrecta de la Entrada Durante la Generación de Páginas Web ('cross-site scripting') vulnerabilidad en RSJoomla! RSFirewall! rsfirewall permite XSS Almacenado. Este problema afecta a…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25341
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2969
|
7.1 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in kutethemes Boutique kute-boutique allows Reflected XSS.This issue affects Boutique: from n/a thro…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25342
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2970
|
7.1 |
HIGH
Network
|
-
|
-
|
Neutralización Incorrecta de la Entrada Durante la Generación de Páginas Web ('cross-site scripting') vulnerabilidad en kutethemes Boutique kute-boutique permite XSS Reflejado. Este problema afecta a…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25342
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
