Export limit exceeded: 84993 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (84993 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-39446 | 2 Presslayouts, Wordpress | 2 Kapee, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated PHP Object Injection in Kapee < 1.7.0 versions. | ||||
| CVE-2026-39548 | 2 Sneeit, Wordpress | 2 Magone, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in MagOne <= 9.0 versions. | ||||
| CVE-2026-40736 | 2 Edge-themes, Wordpress | 2 Laurits, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated PHP Object Injection in Laurits <= 1.5.1 versions. | ||||
| CVE-2026-40760 | 2 Edge-themes, Wordpress | 2 Behold, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated PHP Object Injection in Behold <= 1.5 versions. | ||||
| CVE-2026-40761 | 2 Edge-themes, Wordpress | 2 Valeska, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated PHP Object Injection in Valeska <= 1.2.2 versions. | ||||
| CVE-2026-49057 | 2 Eyecix Technologies, Wordpress | 2 Jobsearch, Wordpress | 2026-06-20 | 7.5 High |
| Unauthenticated Broken Access Control in JobSearch <= 3.2.7 versions. | ||||
| CVE-2026-49113 | 2 Themeco, Wordpress | 2 Cornerstone, Wordpress | 2026-06-20 | 8.5 High |
| Subscriber Arbitrary Code Execution in Cornerstone < 7.8.8 versions. | ||||
| CVE-2026-32966 | 1 Apache | 1 Dolphinscheduler | 2026-06-20 | 7.5 High |
| DataSource API Missing Authorization Check Leads to Arbitrary Data Source Metadata Disclosure in Apache DolphinScheduler. This issue affects Apache DolphinScheduler: before 3.4.2. Users are recommended to upgrade to version 3.4.2, which fixes the issue. | ||||
| CVE-2024-49269 | 2 Mythemes, Wordpress | 2 My Flatonica, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in my flatonica <= 0.0.8 versions. | ||||
| CVE-2025-59560 | 2 Sonaar Music, Wordpress | 2 Sonaar, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in Sonaar <= 4.27.4 versions. | ||||
| CVE-2025-59563 | 2 Sonaar Music, Wordpress | 2 Sonaar, Wordpress | 2026-06-20 | 8.8 High |
| Subscriber Privilege Escalation in Sonaar <= 4.27.4 versions. | ||||
| CVE-2025-60223 | 2 Quantumcloud, Wordpress | 2 Wpbot Pro Wordpress Chatbot, Wordpress | 2026-06-20 | 7.7 High |
| Subscriber Arbitrary File Deletion in WPBot Pro Wordpress Chatbot <= 13.6.5 versions. | ||||
| CVE-2025-69110 | 2 Themerex, Wordpress | 2 Airsupply, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated Local File Inclusion in AirSupply <= 2.0.0 versions. | ||||
| CVE-2025-69135 | 2 Curlythemes, Wordpress | 2 Events Schedule - Wordpress Events Calendar Plugin, Wordpress | 2026-06-20 | 8.5 High |
| Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin <= 2.7.2 versions. | ||||
| CVE-2025-69138 | 2 Jthemes, Wordpress | 2 Genemy, Wordpress | 2026-06-20 | 8.8 High |
| Subscriber Privilege Escalation in Genemy <= 1.6.6 versions. | ||||
| CVE-2025-69161 | 2 Themerex, Wordpress | 2 Snowy, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated Local File Inclusion in Snowy <= 1.13 versions. | ||||
| CVE-2025-69171 | 2 Themerex, Wordpress | 2 Orpheus, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated Local File Inclusion in Orpheus <= 1.3 versions. | ||||
| CVE-2026-22328 | 2 Vamtam, Wordpress | 2 Auto Repair, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in Auto Repair <= 22.6 versions. | ||||
| CVE-2026-22329 | 2 Themeum, Wordpress | 2 Skillate, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in Skillate <= 1.2.10 versions. | ||||
| CVE-2026-22334 | 2 Wordpress, Wpos | 2 Wordpress, Woocommerce Book Price | 2026-06-20 | 7.5 High |
| Subscriber Arbitrary File Download in Woocommerce Book Price <= 1.3 versions. | ||||