General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-49866 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nikel Beautiful C… | High (7.1) | 2025-07-04 | General-Purpose |
| CVE-2025-49418 | Server-Side Request Forgery (SSRF) vulnerability in TeconceTheme Allmart allows Server Side Request Forgery. This issue… | High (7.2) | 2025-07-04 | General-Purpose |
| CVE-2025-49417 | Deserialization of Untrusted Data vulnerability in BestWpDeveloper WooCommerce Product Multi-Action allows Object Injec… | Critical (9.8) | 2025-07-04 | General-Purpose |
| CVE-2025-49303 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Shabti Kaplan Frontend … | Medium (6.8) | 2025-07-04 | General-Purpose |
| CVE-2025-49302 | Improper Control of Generation of Code ('Code Injection') vulnerability in Scott Paterson Easy Stripe allows Remote Cod… | Critical (10.0) | 2025-07-04 | General-Purpose |