CVE Alert: CVE-2025-22268 - RedPacket Security
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Uncanny Owl Uncanny Toolkit for LearnDash allows Stored
CVE Alert: CVE-2025-26746 - RedPacket Security
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Advanced Custom Fields: Link Picker Field
CVE Alert: CVE-2025-22263 - RedPacket Security
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Global Gallery allows Reflected XSS. This issue
CVE Alert: CVE-2025-26740 - RedPacket Security
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in burgersoftware SpaBiz allows DOM-Based XSS. This issue
CVE Alert: CVE-2025-24850 - RedPacket Security
An attacker can export other users' plant information.
CVE Alert: CVE-2025-26730 - RedPacket Security
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NotFound Macro Calculator with Admin Email Optin & Data. This
CVE Alert: CVE-2025-25276 - RedPacket Security
An unauthenticated attacker can hijack other users' devices and potentially control them.
CVE Alert: CVE-2025-24315 - RedPacket Security
Unauthenticated attackers can add devices of other users to their scenes (or arbitrary scenes of other arbitrary users).
CVE Alert: CVE-2025-26906 - RedPacket Security
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ren Ventura WP Delete User Accounts allows DOM-Based
CVE Alert: CVE-2025-26903 - RedPacket Security
Cross-Site Request Forgery (CSRF) vulnerability in RealMag777 InPost Gallery allows Cross Site Request Forgery. This issue affects InPost Gallery: from n/a
RedPacket Security