15 matches found
EUVD-2026-37617
Contributor PHP Object Injection in JetEngine = 3.8.9.1 versions...
EUVD-2026-37621
Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...
EUVD-2026-37616
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.9.1 versions...
CVE-2026-49084
Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...
CVE-2026-49076
Unauthenticated SQL Injection in JetEngine = 3.8.9.1 versions...
CVE-2026-49074
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.9.1 versions...
CVE-2026-49084 WordPress JetEngine plugin < 3.8.9.1 - SQL Injection vulnerability
Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...
CVE-2026-49084
JetEngine (WordPress plugin) versions earlier than 3.8.9.1 are affected by unauthenticated SQL Injection. The vulnerability is described as a high-severity (CVSS 3.1: 9.3) issue with network access and no required privileges, impacting confidentiality. A fix is available in 3.8.9.1 and later; upg...
CVE-2026-49075 WordPress JetEngine plugin <= 3.8.9.1 - PHP Object Injection vulnerability
Contributor PHP Object Injection in JetEngine = 3.8.9.1 versions...
CVE-2026-49074 WordPress JetEngine plugin <= 3.8.9.1 - Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.9.1 versions...
CVE-2026-49074
CVE-2026-49074 affects the WordPress JetEngine plugin (versions <= 3.8.9.1). The description specifies an Unauthenticated Cross Site Scripting (XSS) vulnerability in JetEngine
WordPress JetEngine plugin <= 3.8.9.1 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by daroo in WordPress Plugin JetEngine versions = 3.8.9.1...
WordPress JetEngine plugin <= 3.8.9.1 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by daroo in WordPress Plugin JetEngine versions = 3.8.9.1...
WordPress JetEngine plugin <= 3.8.9.1 - SQL Injection vulnerability
SQL Injection vulnerability discovered by daroo in WordPress Plugin JetEngine versions = 3.8.9.1...
WordPress JetEngine plugin < 3.8.9.1 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Bonds in WordPress Plugin JetEngine versions 3.8.9.1...