General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-12354 | The Live CSS Preview plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capabilit… | Medium (4.3) | 2025-12-05 | General-Purpose |
| CVE-2025-12186 | The Weekly Planner plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions… | Medium (4.4) | 2025-12-05 | General-Purpose |
| CVE-2025-12093 | The Voidek Employee Portal plugin for WordPress is vulnerable to unauthorized access due to a missing capability check … | Medium (5.3) | 2025-12-05 | General-Purpose |
| CVE-2025-13860 | The Easy Jump Links Menus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `h_tags` parameter … | Medium (6.4) | 2025-12-05 | General-Purpose |
| CVE-2025-13625 | The WP-SOS-Donate Donation Sidebar Plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `$_SERV… | Medium (6.1) | 2025-12-05 | General-Purpose |