NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-63036	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in DFDevelopment Ronneby Theme C...	2025-12-09	7.5	NETWORK	HIGH	NVD
CVE-2025-63035	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in VibeThemes WPLMS wplms_plugin allows DOM-Based X...	2025-12-09	6.5	NETWORK	MEDIUM	NVD
CVE-2025-63034	Missing Authorization vulnerability in Steve Truman Page View Count page-views-count allows Exploiting Incorrectly Configured Access Control Security ...	2025-12-09	5.4	NETWORK	MEDIUM	NVD
CVE-2025-63033	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Riyadh Ahmed Make Section & Column Clickable...	2025-12-09	5.9	NETWORK	MEDIUM	NVD
CVE-2025-63030	Cross-Site Request Forgery (CSRF) vulnerability in Saad Iqbal New User Approve new-user-approve allows Cross Site Request Forgery.This issue affects N...	2025-12-09	7.1	NETWORK	HIGH	NVD
CVE-2025-63028	Missing Authorization vulnerability in shinetheme Traveler traveler allows Exploiting Incorrectly Configured Access Control Security Levels.This issue...	2025-12-09	5.3	NETWORK	MEDIUM	NVD
CVE-2025-63025	Missing Authorization vulnerability in Xagio SEO Xagio SEO xagio-seo allows Exploiting Incorrectly Configured Access Control Security Levels.This issu...	2025-12-09	4.3	NETWORK	MEDIUM	NVD
CVE-2025-63024	Missing Authorization vulnerability in tychesoftwares Order Delivery Date for WooCommerce order-delivery-date-for-woocommerce allows Exploiting Incorr...	2025-12-09	5.4	NETWORK	MEDIUM	NVD
CVE-2025-63023	Missing Authorization vulnerability in Easy Payment Payment Gateway for PayPal on WooCommerce woo-paypal-gateway allows Exploiting Incorrectly Configu...	2025-12-09	5.3	NETWORK	MEDIUM	NVD
CVE-2025-63015	Missing Authorization vulnerability in paysera WooCommerce Payment Gateway – Paysera woo-payment-gateway-paysera allows Exploiting Incorrectly C...	2025-12-09	4.3	NETWORK	MEDIUM	NVD
CVE-2025-63013	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ThimPress WP Hotel Booking wp-hotel-booking allows Retriev...	2025-12-09	4.3	NETWORK	MEDIUM	NVD
CVE-2025-63012	Cross-Site Request Forgery (CSRF) vulnerability in ThimPress WP Hotel Booking wp-hotel-booking allows Cross Site Request Forgery.This issue affects WP...	2025-12-09	4.3	NETWORK	MEDIUM	NVD
CVE-2025-63011	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThimPress WP Hotel Booking wp-hotel-booking allo...	2025-12-09	5.9	NETWORK	MEDIUM	NVD
CVE-2025-63010	Server-Side Request Forgery (SSRF) vulnerability in ThemesInflow Hercules Core hercules-core allows Server Side Request Forgery.This issue affects He...	2025-12-09	4.8	NETWORK	MEDIUM	NVD
CVE-2025-63009	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in yuvalo WP Google Analytics Events wp-google-analytics-even...	2025-12-09	5.3	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.