|
2971
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in RadiusTheme Review Schema review-schema allows Retrieve Embedded Sensitive Data.This issue affects Review S…
|
CWE-497
Exposure of Sensitive System Information to an Unauthorized Control Sphere
|
CVE-2026-25344
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2972
|
6.5 |
MEDIUM
Network
|
-
|
-
|
Exposición de Información Sensible del Sistema a una Esfera de Control No Autorizada vulnerabilidad en RadiusTheme Review Schema review-schema permite Recuperar Datos Sensibles Incrustados. Este prob…
|
CWE-497
Exposure of Sensitive System Information to an Unauthorized Control Sphere
|
CVE-2026-25344
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2973
|
9.9 |
CRITICAL
Network
|
-
|
-
|
Improper Validation of Specified Quantity in Input vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affec…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-25345
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2974
|
9.9 |
CRITICAL
Network
|
-
|
-
|
Validación Incorrecta de Cantidad Especificada en la Entrada vulnerabilidad en GalleryCreator SimpLy Gallery simply-gallery-block permite Acceder a Funcionalidad No Restringida Adecuadamente por ACLs…
|
CWE-1284
Improper Validation of Specified Quantity in Input
|
CVE-2026-25345
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2975
|
7.1 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ays Pro FAQ Builder AYS faq-builder-ays allows Exploiting Incorrectly Configured Access Control S…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25346
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2976
|
7.1 |
HIGH
Network
|
-
|
-
|
Neutralización Incorrecta de la Entrada Durante la Generación de Páginas Web ('Cross-site Scripting') vulnerabilidad en Ays Pro FAQ Builder AYS faq-builder-ays permite Explotar Niveles de Seguridad d…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25346
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2977
|
7.1 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Acato WP REST Cache wp-rest-cache allows Stored XSS.This issue affects WP REST Cache: from n/a th…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25347
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2978
|
7.1 |
HIGH
Network
|
-
|
-
|
Neutralización Incorrecta de la Entrada Durante la Generación de Páginas Web ('cross-site scripting') vulnerabilidad en Acato WP REST Cache wp-rest-cache permite XSS Almacenado. Este problema afecta …
|
CWE-79
Cross-site Scripting
|
CVE-2026-25347
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2979
|
7.1 |
HIGH
Network
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in skygroup Loobek loobek allows Reflected XSS.This issue affects Loobek: from n/a through < 1.5.2.
|
CWE-79
Cross-site Scripting
|
CVE-2026-25349
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2980
|
7.1 |
HIGH
Network
|
-
|
-
|
Vulnerabilidad de Neutralización Incorrecta de la Entrada Durante la Generación de Páginas Web ('cross-site scripting') en skygroup Loobek loobek permite XSS Reflejado. Este problema afecta a Loobek:…
|
CWE-79
Cross-site Scripting
|
CVE-2026-25349
|
2026-04-25 01:32 |
2026-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
