CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7693 matches found

PrestaShop Theme Volty CMS Blog - SQL Injection

In the module 'Theme Volty CMS Blog' tvcmsblog up to versions 4.0.1 from Theme Volty for PrestaShop, a guest can perform SQL injection in affected versions. id: CVE-2023-39650 info: name: PrestaShop Theme Volty CMS Blog - SQL Injection author: mastercho severity: critical description: | In the...

9.8CVSS8.5AI score0.37681EPSS

Exploits1References2

Nuclei•added 10 hours ago•15 views

Joomla! Component MMS Blog 2.3.0 - Local File Inclusion

A directory traversal vulnerability in the MMS Blog commmsblog component 2.3.0 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1491 info: name: Joomla! Component MMS Blo...

5CVSS5.8AI score0.04969EPSS

Exploits1References5

Nuclei•added 10 hours ago•6 views

News & Blog Designer Pack – WordPress Blog Plugin <= 3.4.1 - Unauthenticated Local File Inclusion

The News & Blog Designer Pack WordPress plugin up to version 3.4.1 contains a remote code execution caused by local file inclusion in the bdpgetmorepost function, letting unauthenticated attackers include arbitrary PHP files, exploit requires AJAX request with crafted POST data. id: CVE-2023-5815...

9.8CVSS9.3AI score0.49165EPSS

Exploits0References3

Circl•added yesterday•4 views

CVE-2026-52754

creationtimestamp| type| source ---|---|--- 2026-06-11 21:37:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mo26oplrgz2o...

8.8CVSS5.3AI score0.00051EPSS

Exploits0References1

HackRead•added yesterday•6 views

Criminal IP at Infosecurity Europe 2026: Introducing AITEM, the Next Chapter of Attack Surface Management

Torrance, United States / California, 11th June 2026, CyberNewswire...

5.4AI score

Exploits0

Circl•added yesterday•8 views

CVE-2026-24187

creationtimestamp| type| source ---|---|--- 2026-06-11 04:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mnydz7e3co2o 2026-06-11 04:07:09+00:00| seen| https://bsky.app/profile/potato.software/post/3mnydzaulpn2f...

8.8CVSS5.3AI score0.00012EPSS

Exploits0References2

Circl•added 2 days ago•6 views

CVE-2026-49840

creationtimestamp| type| source ---|---|--- 2026-06-10 16:37:05+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mnx5hdfrqi2f...

9.1CVSS5.3AI score0.00059EPSS

Exploits0References1

RedhatCVE•added 2 days ago•3 views

CVE-2026-8895

The kk blog card plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'blog-card' shortcode in all versions up to, and including, 1.3. This is due to insufficient input sanitization and output escaping on the shortcode's 'href' and 'type' attributes, which are...

6.4CVSS5.7AI score0.00029EPSS

Exploits0References1

Nuclei•added 2 days ago•100 views

Jms Blog - SQL Injection

The module Jms Blog jmsblog from Joommasters contains a Time Based SQL injection vulnerability. This module is for the PrestaShop e-commerce platform and mainly provided with joommasters PrestaShop themes id: CVE-2023-27034 info: name: Jms Blog - SQL Injection author: MaStErChO severity: critical...

9.8CVSS7.9AI score0.90497EPSS

Exploits0References5

Circl•added 3 days ago•6 views

CVE-2026-42824

creationtimestamp| type| source ---|---|--- 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review...

7.5CVSS5.3AI score0.00072EPSS

Exploits0References1

Circl•added 3 days ago•7 views

CVE-2026-45650

creationtimestamp| type| source ---|---|--- 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review...

4.3CVSS5.3AI score0.00077EPSS

Exploits0References1

Circl•added 3 days ago•6 views

CVE-2026-48569

creationtimestamp| type| source ---|---|--- 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review 2026-06-09 16:23:58+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0184...

7.1CVSS5.3AI score0.00083EPSS

Exploits0References2

Circl•added 3 days ago•5 views

CVE-2026-45468

creationtimestamp| type| source ---|---|--- 2026-06-09 16:04:53+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0182 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review...

5.4CVSS7.1AI score0.0006EPSS

Exploits0References2

Circl•added 3 days ago•4 views

CVE-2026-47634

7.3CVSS7.1AI score0.00063EPSS

Exploits0References2

Circl•added 3 days ago•4 views

CVE-2026-47638

5.4CVSS7.1AI score0.0006EPSS

Exploits0References2

Circl•added 3 days ago•5 views

CVE-2026-48565

creationtimestamp| type| source ---|---|--- 2026-06-09 15:44:28+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0181 2026-06-09 16:12:18+00:00| seen| https://www.thezdi.com/blog/2026/6/9/the-june-2026-security-update-review...

7.8CVSS5.3AI score0.00122EPSS

Exploits0References2

Circl•added 3 days ago•6 views

CVE-2026-41108

7CVSS4.9AI score0.00042EPSS

Exploits0References3

Circl•added 3 days ago•5 views

CVE-2026-34335

7CVSS5.3AI score0.00055EPSS

Exploits0References2

Circl•added 3 days ago•17 views

CVE-2026-42836