NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-46453	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CreatorTeam Zoho Creator Forms allows Stored XSS...	2025-04-24	6.5	NETWORK	MEDIUM	NVD
CVE-2025-46452	Cross-Site Request Forgery (CSRF) vulnerability in Olav Kolbu Google News allows Stored XSS. This issue affects Google News: from n/a through 2.5.1.	2025-04-24	7.1	NETWORK	HIGH	NVD
CVE-2025-46451	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Syed Balkhi Floating Social Bar allows Stored XS...	2025-04-24	5.9	NETWORK	MEDIUM	NVD
CVE-2025-46450	Cross-Site Request Forgery (CSRF) vulnerability in x000x occupancyplan allows Stored XSS. This issue affects occupancyplan: from n/a through 1.0.3.0.	2025-04-24	7.1	NETWORK	HIGH	NVD
CVE-2025-46449	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Novium WoWHead Tooltips allows Stored XSS. This ...	2025-04-24	7.1	NETWORK	HIGH	NVD
CVE-2025-46447	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFable Fable Extra allows DOM-Based XSS. This i...	2025-04-24	6.5	NETWORK	MEDIUM	NVD
CVE-2025-46445	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pReya External Markdown allows Stored XSS. This ...	2025-04-24	6.5	NETWORK	MEDIUM	NVD
CVE-2025-46443	Server-Side Request Forgery (SSRF) vulnerability in Adam Pery Animate allows Server Side Request Forgery. This issue affects Animate: from n/a through...	2025-04-24	4.9	NETWORK	MEDIUM	NVD
CVE-2025-46442	Cross-Site Request Forgery (CSRF) vulnerability in Casey Johnson Loan Calculator allows Stored XSS. This issue affects Loan Calculator: from n/a throu...	2025-04-24	7.1	NETWORK	HIGH	NVD
CVE-2025-46439	Cross-Site Request Forgery (CSRF) vulnerability in Vladimir Prelovac Plugin Central allows Path Traversal. This issue affects Plugin Central: from n/a...	2025-04-24	7.4	NETWORK	HIGH	NVD
CVE-2025-46438	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in warmwhisky GTDB Guitar Tuners allows Stored XSS....	2025-04-24	6.5	NETWORK	MEDIUM	NVD
CVE-2025-46436	Cross-Site Request Forgery (CSRF) vulnerability in Sebastian Echeverry SCSS-Library allows Cross Site Request Forgery. This issue affects SCSS-Library...	2025-04-24	4.3	NETWORK	MEDIUM	NVD
CVE-2025-46435	Cross-Site Request Forgery (CSRF) vulnerability in Yash Binani Time Based Greeting allows Stored XSS. This issue affects Time Based Greeting: from n/a...	2025-04-24	7.1	NETWORK	HIGH	NVD
CVE-2025-46264	Unrestricted Upload of File with Dangerous Type vulnerability in Angelo Mandato PowerPress Podcasting allows Upload a Web Shell to a Web Server. This ...	2025-04-24	9.9	NETWORK	CRITICAL	NVD
CVE-2025-46261	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Craig Hewitt Seriously Simple Podcasting allows ...	2025-04-24	5.9	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.