Export limit exceeded: 85001 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (85001 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2025-60223 2 Quantumcloud, Wordpress 2 Wpbot Pro Wordpress Chatbot, Wordpress 2026-06-20 7.7 High
Subscriber Arbitrary File Deletion in WPBot Pro Wordpress Chatbot <= 13.6.5 versions.
CVE-2025-69110 2 Themerex, Wordpress 2 Airsupply, Wordpress 2026-06-20 8.1 High
Unauthenticated Local File Inclusion in AirSupply <= 2.0.0 versions.
CVE-2025-69135 2 Curlythemes, Wordpress 2 Events Schedule - Wordpress Events Calendar Plugin, Wordpress 2026-06-20 8.5 High
Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin <= 2.7.2 versions.
CVE-2025-69138 2 Jthemes, Wordpress 2 Genemy, Wordpress 2026-06-20 8.8 High
Subscriber Privilege Escalation in Genemy <= 1.6.6 versions.
CVE-2025-69161 2 Themerex, Wordpress 2 Snowy, Wordpress 2026-06-20 8.1 High
Unauthenticated Local File Inclusion in Snowy <= 1.13 versions.
CVE-2025-69171 2 Themerex, Wordpress 2 Orpheus, Wordpress 2026-06-20 8.1 High
Unauthenticated Local File Inclusion in Orpheus <= 1.3 versions.
CVE-2026-22328 2 Vamtam, Wordpress 2 Auto Repair, Wordpress 2026-06-20 7.1 High
Unauthenticated Cross Site Scripting (XSS) in Auto Repair <= 22.6 versions.
CVE-2026-22329 2 Themeum, Wordpress 2 Skillate, Wordpress 2026-06-20 7.1 High
Unauthenticated Cross Site Scripting (XSS) in Skillate <= 1.2.10 versions.
CVE-2026-22334 2 Wordpress, Wpos 2 Wordpress, Woocommerce Book Price 2026-06-20 7.5 High
Subscriber Arbitrary File Download in Woocommerce Book Price <= 1.3 versions.
CVE-2026-22335 2 Wc Lovers., Wordpress 2 Woocommerce Frontend Manager – Ultimate, Wordpress 2026-06-20 8.5 High
Subscriber SQL Injection in WooCommerce Frontend Manager – Ultimate < 6.7.7 versions.
CVE-2026-22339 2 Jobster Marketplace, Wordpress 2 Wpjobster, Wordpress 2026-06-20 7.1 High
Unauthenticated Cross Site Scripting (XSS) in WPJobster <= 6.3.5 versions.
CVE-2026-22342 2 Premiumpress Limited., Wordpress 2 Wordpress Dating Theme, Wordpress 2026-06-20 8.8 High
Unauthenticated Cross Site Request Forgery (CSRF) in WordPress Dating Theme <= 11.2.0 versions.
CVE-2026-22343 2 Premiumpress Limited., Wordpress 2 Wordpress Dating Theme, Wordpress 2026-06-20 8.6 High
Unauthenticated Broken Access Control in WordPress Dating Theme <= 11.2.0 versions.
CVE-2026-27400 2 Ovatheme, Wordpress 2 Bookpro, Wordpress 2026-06-20 8.6 High
Unauthenticated Arbitrary File Deletion in BookPro <= 1.1.0 versions.
CVE-2026-39545 2 Select-themes, Wordpress 2 Zermatt, Wordpress 2026-06-20 8.1 High
Unauthenticated PHP Object Injection in Zermatt <= 1.6.1 versions.
CVE-2026-39573 2 Select-themes, Wordpress 2 Mildhill, Wordpress 2026-06-20 8.1 High
Unauthenticated PHP Object Injection in Mildhill <= 1.5 versions.
CVE-2026-39582 2 Wordpress, Xtemos 2 Wordpress, Hitek 2026-06-20 8.1 High
Unauthenticated Local File Inclusion in Hitek < 1.8.3 versions.
CVE-2026-40726 2 Themegrill, Wordpress 2 User Registration Stripe, Wordpress 2026-06-20 8.2 High
Unauthenticated Broken Access Control in User Registration Stripe <= 1.3.14 versions.
CVE-2026-40753 2 Mikado-themes, Wordpress 2 Easymeals, Wordpress 2026-06-20 8.1 High
Unauthenticated PHP Object Injection in EasyMeals <= 1.5.1 versions.
CVE-2026-40765 2 Collectchat, Wordpress 2 Collectchat, Wordpress 2026-06-20 7.1 High
Unauthenticated Cross Site Scripting (XSS) in collectchat <= 2.4.9 versions.