NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-13526	The OneClick Chat to Order plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.0.8 via the ...	2025-11-22	7.5	NETWORK	HIGH	NVD
CVE-2025-13318	The Booking Calendar Contact Form plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.2.60. This is du...	2025-11-22	5.3	NETWORK	MEDIUM	NVD
CVE-2025-13136	The GSheetConnector For Ninja Forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'njform...	2025-11-22	4.3	NETWORK	MEDIUM	NVD
CVE-2025-13384	The CP Contact Form with PayPal plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.3.56. This is due ...	2025-11-22	7.5	NETWORK	HIGH	NVD
CVE-2025-13317	The Appointment Booking Calendar plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.3.96. This is due...	2025-11-22	5.3	NETWORK	MEDIUM	NVD
CVE-2025-12877	The IDonate – Blood Donation, Request And Donor Management System plugin for WordPress is vulnerable to unauthorized modification od data due to a mis...	2025-11-22	5.3	NETWORK	MEDIUM	NVD
CVE-2025-12752	The Subscriptions & Memberships for PayPal plugin for WordPress is vulnerable to fake payment creation in all versions up to, and including, 1.1.7. Th...	2025-11-22	5.3	NETWORK	MEDIUM	NVD
CVE-2025-11186	The Cookie Notice & Compliance for GDPR / CCPA plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's cookies_accepted sho...	2025-11-22	6.4	NETWORK	MEDIUM	NVD
CVE-2025-12889	With TLS 1.2 connections a client can use any digest, specifically a weaker digest that is supported, rather than those in the CertificateRequest.	2025-11-22	2.3	NETWORK	LOW	NVD
CVE-2025-65947	thread-amount is a tool that gets the amount of threads in the current process. Prior to version 0.2.2, there are resource leaks when querying thread ...	2025-11-21	8.7	NETWORK	HIGH	NVD
CVE-2025-65946	Roo Code is an AI-powered autonomous coding agent that lives in users' editors. Prior to version 3.26.7, Due to an error in validation it was possible...	2025-11-21	8.1	NETWORK	HIGH	NVD
CVE-2025-12888	Vulnerability in X25519 constant-time cryptographic implementations due to timing side channels introduced by compiler optimizations and CPU architect...	2025-11-21	1.0	PHYSICAL	LOW	NVD
CVE-2025-11936	Improper input validation in the TLS 1.3 KeyShareEntry parsing in wolfSSL v5.8.2 on multiple platforms allows a remote unauthenticated attacker to cau...	2025-11-21	6.3	NETWORK	MEDIUM	NVD
CVE-2025-11934	Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allows f...	2025-11-21	2.1	NETWORK	LOW	NVD
CVE-2025-11933	Improper Input Validation in the TLS 1.3 CKS extension parsing in wolfSSL 5.8.2 and earlier on multiple platforms allows a remote unauthenticated atta...	2025-11-21	2.3	NETWORK	LOW	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.