NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-63055	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Liton Arefin Master Addons for Elementor master-...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63054	Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next allows Exploiting Incorrectly Configured Access Con...	2025-12-09	5.3	NETWORK	MEDIUM	NVD
CVE-2025-63052	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GalleryCreator SimpLy Gallery simply-gallery-blo...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63050	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sizam REHub Framework rehub-framework allows Sto...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63049	Missing Authorization vulnerability in CridioStudio ListingPro Lead Form listingpro-lead-form allows Accessing Functionality Not Properly Constrained ...	2025-12-09	5.3	NETWORK	MEDIUM	NVD
CVE-2025-63048	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CridioStudio ListingPro Lead Form listingpro-lea...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63047	Missing Authorization vulnerability in CridioStudio ListingPro listingpro allows Exploiting Incorrectly Configured Access Control Security Levels.This...	2025-12-09	5.3	NETWORK	MEDIUM	NVD
CVE-2025-63046	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CridioStudio ListingPro listingpro-plugin allows...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63045	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in averta Master Slider Pro masterslider allows DOM...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63044	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63042	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS Elementor Addons tutor-lms-ele...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63037	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DFDevelopment Ronneby Theme Core ronneby-core al...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63036	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in DFDevelopment Ronneby Theme C...	2025-12-09	7.5	NETWORK	HIGH	NVD
CVE-2025-63035	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VibeThemes WPLMS wplms_plugin allows DOM-Based X...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63034	Missing Authorization vulnerability in Steve Truman Page View Count page-views-count allows Exploiting Incorrectly Configured Access Control Security ...	2025-12-09	5.4	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.