Pagina 4 – Azienda Sicura

Lista CVE 2025/22xxx

CVE nel gruppo: 22xxx

CVE-2025-22276 (Clicca per dettagli)

CVE-2025-22277 (WordPress Related Post Shortcode Plugin <= 1.2 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22278 (WordPress Vitepos plugin <= 3.1.4 - Broken Authentication vulnerability)

CVE-2025-22280 (WordPress Whitish Lite theme <= 2.1.13 - Stored Cross Site Scripting (XSS) vulnerability)

CVE-2025-22283 (WordPress DefendWP Firewall Plugin <= 1.1.0 - Broken Access Control vulnerability)

CVE-2025-22284 (WordPress GetSocial Plugin <= 2.0.1 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22286 (WordPress LTL Freight Quotes – Unishippers Edition plugin <= 2.5.8 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22289 (WordPress LTL Freight Quotes – Worldwide Express Edition plugin <= 5.0.21 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22290 (WordPress LTL Freight Quotes – Unishippers Edition plugin <= 2.5.8 - Broken Access Control vulnerability)

CVE-2025-22291 (WordPress LTL Freight Quotes – FreightQuote Edition Plugin <= 2.3.11 - SQL Injection vulnerability)

CVE-2025-22292 (WordPress LTL Freight Quotes – Worldwide Express Edition plugin <= 5.0.20 - Arbitrary Content Deletion vulnerability)

CVE-2025-22293 (WordPress Powerful Auto Chat plugin <= 1.9.8 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22294 (WordPress Gutentor plugin <= 3.4.0 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22295 (WordPress Custom Field For WP Job Manager plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22296 (WordPress Tripetto plugin <= 8.0.5 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22297 (WordPress Hash Elements plugin <= 1.4.9 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22298 (WordPress AI WP Writer plugin <= 3.8.4.4 - Cross Site Request Forgery (CSRF) vulnerability)

CVE-2025-22299 (WordPress Hive Support plugin <= 1.1.6 - Broken Access Control vulnerability)

CVE-2025-22300 (WordPress AI for SEO plugin <= 1.2.9 - Broken Access Control vulnerability)

CVE-2025-22301 (WordPress PixelYourSite plugin <= 10.0.1.2 - Cross Site Request Forgery (CSRF) vulnerability)

CVE-2025-22302 (WordPress MyBookTable Bookstore by Stormhill Media plugin <= 3.5.3 - Cross Site Request Forgery (CSRF) vulnerability)

CVE-2025-22303 (WordPress WP Wand plugin <= 1.2.5 - Broken Access Control vulnerability)

CVE-2025-22304 (WordPress WP Mailster plugin <= 1.8.17.0 - Sensitive Data Exposure vulnerability)

CVE-2025-22305 (WordPress WP Visitor Statistics plugin <= 7.3 - Broken Access Control vulnerability)

CVE-2025-22306 (WordPress Hero Banner Ultimate plugin <= 1.4.2 - Local File Inclusion vulnerability)

CVE-2025-22307 (WordPress Link Whisper Free plugin <= 0.7.7 - Sensitive Data Exposure vulnerability)

CVE-2025-22308 (WordPress Product Table for WooCommerce plugin <= 3.5.6 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22309 (WordPress Smart Custom FIelds plugin <= 5.0.0 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22310 (WordPress SpeakOut! Email Petitions plugin <= 4.4.2 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22311 (WordPress TemplatesNext ToolKit plugin <= 3.2.9 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22312 (WordPress Private Messages for UserPro plugin <= 4.10.0 - Local File Inclusion vulnerability)

CVE-2025-22313 (WordPress Thim Elementor Kit plugin <= 1.2.8 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22314 (WordPress Widgetize Pages Light plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22315 (WordPress Food Store plugin <= 1.5.1 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22316 (WordPress Typing Text plugin <= 1.2.7 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22317 (WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.5.1 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22318 (WordPress Gallery Images Ape plugin <= 2.2.8 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22319 (WordPress Standard Box Sizes plugin <= 1.6.13 - Broken Access Control vulnerability)

CVE-2025-22320 (WordPress MashShare plugin <= 4.0.47 - Broken Access Control vulnerability)

CVE-2025-22321 (WordPress ProductDyno plugin <= 1.0.24 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22322 (WordPress ElementsCSS Addons for Elementor plugin <= 1.0.8.7 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22323 (WordPress Private Messages for UserPro plugin <= 4.10.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22324 (WordPress Image Hover Effects for Elementor plugin <= 1.0.2.3 - Stored Cross Site Scripting (XSS) vulnerability)

CVE-2025-22325 (WordPress OZ Canonical plugin <= 0.5 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22326 (WordPress Autocompleter plugin <= 1.3.5.2 - CSRF to Stored XSS vulnerability)

CVE-2025-22327 (WordPress 5centsCDN – WordPress CDN Plugin plugin <= 24.8.16 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22328 (WordPress EO4WP plugin <= 1.0.7 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22329 (WordPress Elevio plugin <= 4.4.1 - CSRF to Stored XSS vulnerability)

CVE-2025-22330 (WordPress Free Google Maps plugin <= 1.0.1 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22331 (WordPress MG Parallax Slider plugin <= 1.0. - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22332 (WordPress Cf7Save Extension plugin <= 1 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22333 (WordPress CloudFlare(R) Cache Purge plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22334 (WordPress Piotnet Addons For Elementor plugin <= 2.4.31 - Cross-Site Scripting vulnerability)

CVE-2025-22335 (WordPress Education LMS theme <= 0.0.7 - Stored Cross Site Scripting (XSS) vulnerability)

CVE-2025-22336 (WordPress Opencart Product in WP plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22337 (WordPress Wizhi Multi Filters by Wenprise plugin <= 1.8.6 - CSRF to Stored Cross Site Scripting (XSS) vulnerability)

CVE-2025-22338 (WordPress Order Audit Log for WooCommerce plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22339 (WordPress WP-tagMaker plugin <= 0.2.2 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22341 (WordPress Store Commerce theme <= 1.2.3 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22342 (WordPress Hide Login+ plugin <= 3.5.1 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22343 (WordPress WP Simple Sitemap plugin <= 0.2 - CSRF to Stored XSS vulnerability)

CVE-2025-22344 (WordPress wpSOL plugin <= 1.2.0 - CSRF to Stored XSS vulnerability)

CVE-2025-22345 (WordPress Media Category Library plugin <= 2.7 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22346 (WordPress TS Comfort DB plugin <= 2.0.7 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22347 (WordPress Course Migration for LearnDash plugin 1.0.2 – Server Side Request Forgery (SSRF) vulnerability)

CVE-2025-22348 (WordPress BSK Forms Blacklist plugin <= 3.9 - CSRF to SQL Injection vulnerability)

CVE-2025-22349 (WordPress DynamicTags plugin <= 1.4.0 - SQL Injection vulnerability)

CVE-2025-22350 (WordPress WordPress Auction Plugin plugin <= 3.7 - SQL Injection vulnerability)

CVE-2025-22351 (WordPress Indeed Ultimate Learning Pro plugin <= 3.9 - SQL Injection vulnerability)

CVE-2025-22352 (WordPress Contact Form 7 Database – CFDB7 plugin <= 1.0.0 - SQL Injection vulnerability)

CVE-2025-22353 (WordPress ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes Plugin <= 1.4.8 - SQL Injection vulnerability)

CVE-2025-22354 (WordPress BVD Easy Gallery Manager plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22355 (WordPress Digi Store theme <= 1.1.4 - Cross Site Scripting (XSS) vulnerability)

CVE-2025-22356 (WordPress Kikx Simple Post Author Filter plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22357 (WordPress Stencies plugin <= 0.58 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22358 (WordPress Target Notifications plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22359 (WordPress Wp advertising management plugin <= 1.0.3 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22360 (WordPress SyncFields plugin <= 2.1 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22361 (WordPress WP Azure offload plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability)

CVE-2025-22362 (WordPress Opentracker Analytics Plugin <= 1.3 - Reflected Cross Site Scripting (XSS) vulnerability)

Precedente Successivo