CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2026/03/19 6:30 a.m.•3 views

EUVD-2026-13053

Deserialization of Untrusted Data vulnerability in BuddhaThemes ColorFolio - Freelance Designer WordPress Theme allows Object Injection.This issue affects ColorFolio - Freelance Designer WordPress Theme: from n/a through 1.3...

8.1CVSS5.8AI score0.00061EPSS

Exploits0References2

NVD•added 2026/03/19 6:16 a.m.•0 views

CVE-2026-27096

8.1CVSS0.00061EPSS

Exploits0References1

Vulnrichment•added 2026/03/19 5:31 a.m.•0 views

CVE-2026-27096 WordPress ColorFolio - Freelance Designer WordPress Theme theme <= 1.3 - Deserialization of untrusted data vulnerability

8.1CVSS5.8AI score0.00061EPSS

Exploits0References1

ATTACKERKB•added 2026/03/19 5:31 a.m.•0 views

CVE-2026-27096

8.1CVSS5.8AI score0.00061EPSS

Exploits0References2

Positive Technologies•added 2026/03/19 12:0 a.m.•0 views

PT-2026-26248

🟠 CVE-2026-27096 - High Deserialization of Untrusted Data vulnerability in BuddhaThemes ColorFolio - Freelance Designer WordPress Theme allows Object Injection.This issue affects ColorFolio - Freelance Designer Word... https://t.co/HOIbh9qxFx https://t.co/LcmJdGrhq3...

8.1CVSS5.8AI score0.00061EPSS

Exploits0References5

EUVD•added 2026/03/05 6:30 a.m.•3 views

EUVD-2025-208307

Missing Authorization vulnerability in BuddhaThemes WeDesignTech Ultimate Booking Addon wedesigntech-ultimate-booking-addon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WeDesignTech Ultimate Booking Addon: from n/a through = 1.0.3...

7.5CVSS5.9AI score0.00061EPSS

Exploits0References2

NVD•added 2026/03/05 6:16 a.m.•3 views

CVE-2025-69340

7.5CVSS0.00061EPSS

Exploits0References1

NVD•added 2026/01/06 5:15 p.m.•5 views

CVE-2025-69341

5.4CVSS0.00043EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-19277

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00185EPSS

Exploits0References1

RedhatCVE•added 2025/06/29 12:6 p.m.•3 views

CVE-2025-31428

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddhaThemes HYDRO hydro allows Reflected XSS.This issue affects HYDRO: from n/a through = 2.8...

7.1CVSS5.9AI score0.00185EPSS

Exploits0References1

NVD•added 2025/06/27 12:15 p.m.•2 views

CVE-2025-31428

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddhaThemes HYDRO hydro allows Reflected XSS.This issue affects HYDRO: from n/a through = 2.8...

7.1CVSS0.00185EPSS

Exploits0References1

Positive Technologies•added 2025/06/27 12:0 a.m.•2 views

PT-2025-27098 · Buddhathemes · Buddhathemes Hydro

Name of the Vulnerable Software and Affected Versions: BuddhaThemes HYDRO versions n/a through 2.8 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means that an attacker can inje...

7.1CVSS6.2AI score0.00185EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by