Wind River Support Network

HomeCVE Database

The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.

Reset
Showing
of 200071 entries
IDDescriptionPriorityModified dateFixed Release
CVE-2025-23732 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound Easy Filtering allows Reflected XSS. This issue affects Easy Filtering: from n/a through 2.5.0. -- Jan 22, 2025 n/a
CVE-2025-23730 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound FLX Dashboard Groups allows Reflected XSS. This issue affects FLX Dashboard Groups: from n/a through 0.0.7. -- Jan 23, 2025 n/a
CVE-2025-23729 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in fures XTRA Settings allows Reflected XSS. This issue affects XTRA Settings: from n/a through 2.1.8. -- Jan 23, 2025 n/a
CVE-2025-23727 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound AZ Content Finder allows Reflected XSS. This issue affects AZ Content Finder: from n/a through 0.1. -- Jan 23, 2025 n/a
CVE-2025-23725 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in TaskMeister Accessibility Task Manager allows Reflected XSS. This issue affects Accessibility Task Manager: from n/a through 1.2.1. -- Jan 23, 2025 n/a
CVE-2025-23724 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Oleksandr Ustymenko University Quizzes Online allows Reflected XSS. This issue affects University Quizzes Online: from n/a through 1.4. -- Jan 23, 2025 n/a
CVE-2025-23723 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Plestar Inc Plestar Directory Listing allows Reflected XSS. This issue affects Plestar Directory Listing: from n/a through 1.0. -- Jan 23, 2025 n/a
CVE-2025-23722 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound Mind3doM RyeBread Widgets allows Reflected XSS. This issue affects Mind3doM RyeBread Widgets: from n/a through 1.0. -- Jan 23, 2025 n/a
CVE-2025-23720 Cross-Site Request Forgery (CSRF) vulnerability in Mozilla Web Push allows Stored XSS.This issue affects Web Push: from n/a through 1.4.0. -- Jan 16, 2025 n/a
CVE-2025-23717 Cross-Site Request Forgery (CSRF) vulnerability in ITMOOTI Theme My Ontraport Smartform allows Stored XSS.This issue affects Theme My Ontraport Smartform: from n/a through 1.2.11. -- Jan 16, 2025 n/a
CVE-2025-23715 Cross-Site Request Forgery (CSRF) vulnerability in RaymondDesign Post & Page Notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through 0.1.1. -- Jan 16, 2025 n/a
CVE-2025-23713 Cross-Site Request Forgery (CSRF) vulnerability in Artem Anikeev Hack me if you can allows Stored XSS.This issue affects Hack me if you can: from n/a through 1.2. -- Jan 16, 2025 n/a
CVE-2025-23712 Cross-Site Request Forgery (CSRF) vulnerability in Kapost Kapost allows Stored XSS.This issue affects Kapost: from n/a through 2.2.9. -- Jan 16, 2025 n/a
CVE-2025-23710 Cross-Site Request Forgery (CSRF) vulnerability in Mayur Sojitra Flying Twitter Birds allows Stored XSS.This issue affects Flying Twitter Birds: from n/a through 1.8. -- Jan 16, 2025 n/a
CVE-2025-23709 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Kiro G. Formatted post allows Reflected XSS. This issue affects Formatted post: from n/a through 1.01. -- Jan 22, 2025 n/a
CVE-2025-23708 Cross-Site Request Forgery (CSRF) vulnerability in Dominic Fallows DF Draggable allows Stored XSS.This issue affects DF Draggable: from n/a through 1.13.2. -- Jan 16, 2025 n/a
CVE-2025-23706 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound Jet Skinner for BuddyPress allows Reflected XSS. This issue affects Jet Skinner for BuddyPress: from n/a through 1.2.5. -- Jan 22, 2025 n/a
CVE-2025-23703 Cross-Site Request Forgery (CSRF) vulnerability in CS : ABS-Hosting.nl / Walchum.net Free MailClient FMC allows Stored XSS.This issue affects Free MailClient FMC: from n/a through 1.0. -- Jan 16, 2025 n/a
CVE-2025-23702 Cross-Site Request Forgery (CSRF) vulnerability in Schalk Burger Anonymize Links allows Stored XSS.This issue affects Anonymize Links: from n/a through 1.1. -- Jan 16, 2025 n/a
CVE-2025-23701 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Matthew Blackford, LimeSquare Pty Ltd Lime Developer Login allows Reflected XSS. This issue affects Lime Developer Login: from n/a through 1.4.0. -- Jan 22, 2025 n/a
CVE-2025-23700 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Yonatan Reinberg yCyclista allows Reflected XSS. This issue affects yCyclista: from n/a through 1.2.3. -- Jan 22, 2025 n/a
CVE-2025-23699 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in TechMix Event Countdown Timer Plugin by TechMix allows Reflected XSS.This issue affects Event Countdown Timer Plugin by TechMix: from n/a through 1.4. -- Jan 16, 2025 n/a
CVE-2025-23698 Cross-Site Request Forgery (CSRF) vulnerability in Iván R. Delgado Martínez WP Custom Google Search allows Stored XSS.This issue affects WP Custom Google Search: from n/a through 1.0. -- Jan 16, 2025 n/a
CVE-2025-23697 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in WebDeal s.r.o. Pod?lánková inzerce allows Reflected XSS. This issue affects Pod?lánková inzerce: from n/a through 2.4.0. -- Jan 22, 2025 n/a
CVE-2025-23696 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound Staging CDN allows Reflected XSS. This issue affects Staging CDN: from n/a through 1.0.0. -- Jan 22, 2025 n/a
CVE-2025-23695 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound CtyGrid Hyp3rL0cal Search allows Reflected XSS. This issue affects CtyGrid Hyp3rL0cal Search: from n/a through 0.1.1.1. -- Jan 22, 2025 n/a
CVE-2025-23694 Cross-Site Request Forgery (CSRF) vulnerability in Shabbos Commerce Shabbos and Yom Tov allows Stored XSS.This issue affects Shabbos and Yom Tov: from n/a through 1.9. -- Jan 16, 2025 n/a
CVE-2025-23693 Cross-Site Request Forgery (CSRF) vulnerability in Stanis?aw Skonieczny Secure CAPTCHA allows Stored XSS.This issue affects Secure CAPTCHA: from n/a through 1.2. -- Jan 16, 2025 n/a
CVE-2025-23692 Cross-Site Request Forgery (CSRF) vulnerability in Artem Anikeev Slider for Writers allows Stored XSS.This issue affects Slider for Writers: from n/a through 1.3. -- Jan 16, 2025 n/a
CVE-2025-23691 Cross-Site Request Forgery (CSRF) vulnerability in Braulio Aquino García Send to Twitter allows Stored XSS.This issue affects Send to Twitter: from n/a through 1.7.2. -- Jan 16, 2025 n/a
CVE-2025-23690 Cross-Site Request Forgery (CSRF) vulnerability in ArtkanMedia Book a Place allows Stored XSS.This issue affects Book a Place: from n/a through 0.7.1. -- Jan 16, 2025 n/a
CVE-2025-23689 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Poco Blogger Image Import allows Stored XSS.This issue affects Blogger Image Import: from 2.1 through n/a. -- Jan 16, 2025 n/a
CVE-2025-23686 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Callum Richards Admin Menu Organizer allows Reflected XSS. This issue affects Admin Menu Organizer: from n/a through 1.0.1. -- Jan 22, 2025 n/a
CVE-2025-23684 Missing Authorization vulnerability in Eugen Bobrowski Debug Tool allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Debug Tool: from n/a through 2.2. -- Jan 22, 2025 n/a
CVE-2025-23683 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound MACME allows Reflected XSS. This issue affects MACME: from n/a through 1.2. -- Jan 22, 2025 n/a
CVE-2025-23682 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound Preloader Quotes allows Reflected XSS. This issue affects Preloader Quotes: from n/a through 1.0.0. -- Jan 22, 2025 n/a
CVE-2025-23681 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in jannatqualitybacklinks.com REDIRECTION PLUS allows Reflected XSS. This issue affects REDIRECTION PLUS: from n/a through 2.0.0. -- Jan 22, 2025 n/a
CVE-2025-23679 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in Moshiur Rahman Mehedi FP RSS Category Excluder allows Reflected XSS. This issue affects FP RSS Category Excluder: from n/a through 1.0.0. -- Jan 22, 2025 n/a
CVE-2025-23678 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound LocalGrid allows Reflected XSS. This issue affects LocalGrid: from n/a through 1.0.1. -- Jan 22, 2025 n/a
CVE-2025-23677 Cross-Site Request Forgery (CSRF) vulnerability in DSmidgy HTTP to HTTPS link changer by Eyga.net allows Stored XSS.This issue affects HTTP to HTTPS link changer by Eyga.net: from n/a through 0.2.4. -- Jan 16, 2025 n/a
CVE-2025-23676 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound LH Email allows Reflected XSS. This issue affects LH Email: from n/a through 1.12. -- Jan 22, 2025 n/a
CVE-2025-23675 Cross-Site Request Forgery (CSRF) vulnerability in SandyIN Import Users to MailChimp allows Stored XSS.This issue affects Import Users to MailChimp: from n/a through 1.0. -- Jan 16, 2025 n/a
CVE-2025-23674 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound Bit.ly linker allows Reflected XSS. This issue affects Bit.ly linker: from n/a through 1.1. -- Jan 22, 2025 n/a
CVE-2025-23673 Cross-Site Request Forgery (CSRF) vulnerability in Don Kukral Email on Publish allows Stored XSS.This issue affects Email on Publish: from n/a through 1.5. -- Jan 16, 2025 n/a
CVE-2025-23672 Improper Neutralization of Input During Web Page Generation (\'Cross-site Scripting\') vulnerability in NotFound Instant Appointment allows Reflected XSS. This issue affects Instant Appointment: from n/a through 1.2. -- Jan 22, 2025 n/a
CVE-2025-23665 Cross-Site Request Forgery (CSRF) vulnerability in Rapid Sort RSV GMaps allows Stored XSS.This issue affects RSV GMaps: from n/a through 1.5. -- Jan 16, 2025 n/a
CVE-2025-23664 Cross-Site Request Forgery (CSRF) vulnerability in Real Seguro Viagem Real Seguro Viagem allows Stored XSS.This issue affects Real Seguro Viagem: from n/a through 2.0.5. -- Jan 16, 2025 n/a
CVE-2025-23662 Cross-Site Request Forgery (CSRF) vulnerability in Ryan Sutana WP Panoramio allows Stored XSS.This issue affects WP Panoramio: from n/a through 1.5.0. -- Jan 16, 2025 n/a
CVE-2025-23661 Cross-Site Request Forgery (CSRF) vulnerability in Ryan Sutana NV Slider allows Stored XSS.This issue affects NV Slider: from n/a through 1.6. -- Jan 16, 2025 n/a
CVE-2025-23660 Cross-Site Request Forgery (CSRF) vulnerability in Walter Cerrudo MFPlugin allows Stored XSS.This issue affects MFPlugin: from n/a through 1.3. -- Jan 16, 2025 n/a
The 'Fixed Release' column is displayed if a single product version is selected from the filter. The fixed release is applicable in cases when the CVE has been addressed and fixed for that product version. Requires LTSS - customers must have active LTSS (Long Term Security Shield) Support to receive up-to-date information about vulnerabilities that may affect legacy software. Please contact your Wind River account team or see https://docs.windriver.com/bundle/Support_and_Maintenance_Supplemental_Terms_and_Conditions and https://support2.windriver.com/index.php?page=plc for more information.
Live chat
Online