Browse CVEs
144,994 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-12670 | The wp-twitpic plugin for WordPress is vulnerable to Stor... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12712 | The Shouty plugin for WordPress is vulnerable to Stored C... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12713 | The Soundslides plugin for WordPress is vulnerable to Sto... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12151 | The Simple Folio plugin for WordPress is vulnerable to St... | Medium | 6.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-12123 | The Customer Reviews Collector for WooCommerce plugin for... | Medium | 6.1 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-13525 | The WP Directory Kit plugin for WordPress is vulnerable t... | Medium | 6.1 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-59025 | Malicious e-mail content can be used to execute script co... | Medium | 6.1 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-54057 | Improper Neutralization of Script-Related HTML Tags in a ... | Medium | 6.1 | Medium Risk | Patched | 27-Nov-25 |
| CVE-2025-3784 | Cleartext Storage of Sensitive Information Vulnerability ... | Medium | 5.5 | Low Risk | Unpatched (18d) | 27-Nov-25 |
| CVE-2025-30186 | Malicious content uploaded as file can be used to execute... | Medium | 5.4 | Low Risk | Unpatched (18d) | 27-Nov-25 |