CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

219594 matches found

Patchstack•added 2026/05/20 12:14 p.m.•8 views

WordPress WpBookingly plugin <= 1.2.9 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jitlada in WordPress Plugin WpBookingly versions = 1.2.9...

6.5CVSS5.8AI score0.00307EPSS

Exploits0Affected Software1

Vulnrichment•added 2026/05/20 12:13 p.m.•9 views

CVE-2026-27424 WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Broken Access Control vulnerability

Missing Authorization vulnerability in WP Chill Image Photo Gallery Final Tiles Grid allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Image Photo Gallery Final Tiles Grid: from n/a through 3.6.11...

4.3CVSS5.8AI score0.00206EPSS

Exploits0References1

CVE•added 2026/05/20 12:13 p.m.•17 views

CVE-2026-27424

CVE-2026-27424 affects the WordPress plugin Image Photo Gallery Final Tiles Grid (Final Tiles Grid Gallery Lite) up to version 3.6.11. The issue is a Missing Authorization / Broken Access Control vulnerability due to incorrectly configured access control security levels. The CVSS 3.1 base score i...

4.3CVSS5.8AI score0.00206EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 12:13 p.m.•14 views

CVE-2026-27424

4.3CVSS5.8AI score0.00206EPSS

Exploits0References2

EUVD•added 2026/05/20 12:13 p.m.•13 views

EUVD-2026-31095

4.3CVSS5.8AI score0.00206EPSS

Exploits0References1

Cvelist•added 2026/05/20 12:13 p.m.•37 views

CVE-2026-27424 WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Broken Access Control vulnerability

4.3CVSS0.00206EPSS

Exploits0References1

Patchstack•added 2026/05/20 12:12 p.m.•9 views

WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Que Thanh Tuan in WordPress Plugin Image Photo Gallery Final Tiles Grid versions = 3.6.11...

4.3CVSS5.8AI score0.00206EPSS

Exploits0Affected Software1

Cvelist•added 2026/05/20 12:11 p.m.•37 views

CVE-2026-45443 WordPress PDF for Elementor Forms + Drag And Drop Template Builder plugin <= 5.5.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in ADD-ONS.ORG PDF for Elementor Forms + Drag And Drop Template Builder allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects PDF for Elementor Forms + Drag And Drop Template Builder: from n/a through 5.5.1...

5CVSS0.00194EPSS

Exploits0References1

Vulnrichment•added 2026/05/20 12:11 p.m.•11 views

CVE-2026-45443 WordPress PDF for Elementor Forms + Drag And Drop Template Builder plugin <= 5.5.1 - Broken Access Control vulnerability

5CVSS5.8AI score0.00194EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 12:11 p.m.•5 views

CVE-2026-45443

5CVSS5.8AI score0.00194EPSS

Exploits0References2

CVE•added 2026/05/20 12:11 p.m.•13 views

CVE-2026-45443

CVE-2026-45443 affects the WordPress plugin PDF for Elementor Forms + Drag And Drop Template Builder (versions

5CVSS5.8AI score0.00194EPSS

Exploits0References1

EUVD•added 2026/05/20 12:11 p.m.•9 views

EUVD-2026-31096

5CVSS5.8AI score0.00194EPSS

Exploits0References1

Patchstack•added 2026/05/20 12:8 p.m.•8 views

WordPress PDF for Elementor Forms + Drag And Drop Template Builder plugin <= 5.5.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nguyen Tran Tuan Dung domiee13 in WordPress Plugin PDF for Elementor Forms + Drag And Drop Template Builder versions = 5.5.1...

5CVSS5.8AI score0.00194EPSS

Exploits0Affected Software1

RedHat Linux•added 2026/05/20 11:23 a.m.•22 views

Important: Red Hat Security Advisory: Red Hat build of Keycloak 26.4.12 Security Update

New Red Hat build of Keycloak 26.4.12 packages are available from the Customer Portal Red Hat build of Keycloak 26.4.12 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. Security...

8.1CVSS5.8AI score0.00727EPSS

Exploits0References1

RedHat Linux•added 2026/05/20 11:23 a.m.•15 views

keycloak: org.keycloak.authorization: Keycloak: Information disclosure via broken access control in user lookup endpoint

A flaw was found in Keycloak. A broken access control vulnerability in the Account Resources user lookup endpoint allows a remote authenticated user, who owns at least one User-Managed Access UMA resource, to enumerate and harvest personally identifiable information PII for all realm users. By...

4.3CVSS5.9AI score0.0037EPSS

Exploits0References4

NVD•added 2026/05/20 11:16 a.m.•14 views

CVE-2026-0856

Improper Access Control vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables a normal user gaining access to the admin panel. This issue affects Meona Client Launcher Component: through 19.06.2020 15:11:49; Meona Server Component: through 2025.04 5+3230...

7.8CVSS0.00126EPSS

Exploits0References1

CVE•added 2026/05/20 10:38 a.m.•18 views

CVE-2026-0856

The CVE-2026-0856 entry concerns an Improper Access Control vulnerability in the Mesalvo Meona Client Launcher Component and the Mesalvo Meona Server Component. A normal user can gain access to the admin panel due to weaknesses in authorization guards affecting the Client Launcher (up to 19.06.20...

7.8CVSS5.8AI score0.00126EPSS

Exploits0References1

EUVD•added 2026/05/20 10:38 a.m.•10 views

EUVD-2026-31093

7.8CVSS5.8AI score0.00126EPSS

Exploits0References1

Cvelist•added 2026/05/20 10:38 a.m.•39 views

CVE-2026-0856

7.8CVSS0.00126EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 10:38 a.m.•10 views

CVE-2026-0856