Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

110 matches found

EUVD
EUVDadded 2026/06/17 6:35 p.m.9 views

EUVD-2026-37641

Subscriber Privilege Escalation in Falang multilanguage = 1.4.2 versions...

8.8CVSS5.2AI score0.00389EPSS
Exploits0References2
NVD
NVDadded 2026/06/17 1:20 p.m.6 views

CVE-2026-54805

Subscriber Privilege Escalation in Falang multilanguage = 1.4.2 versions...

8.8CVSS0.00389EPSS
Exploits0References1
CVE
CVEadded 2026/06/17 9:51 a.m.14 views

CVE-2026-54805

The CVE covers the WordPress plugin Falang multilanguage (vulnerable:

8.8CVSS5.2AI score0.00389EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/22 7:45 a.m.2 views

CVE-2026-4074 Quran Live Multilanguage <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes

The Quran Live Multilanguage plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cheikh' and 'lang' shortcode attributes in all versions up to, and including, 1.0.3. This is due to insufficient input sanitization and output escaping on user-supplied shortcode attributes. Th...

6.4CVSS5.9AI score0.00378EPSS
Exploits0References13
CNNVD
CNNVDadded 2026/04/22 12:0 a.m.8 views

WordPress plugin Quran Live Multilanguage 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

6.4CVSS5.8AI score0.00378EPSS
Exploits0References1
EUVD
EUVDadded 2026/02/28 2:49 a.m.6 views

EUVD-2026-9069

PMD Designer has Stored XSS in VBHTMLRenderer and YAHTMLRenderer via unescaped violation messages...

6.8CVSS5.9AI score0.00297EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2026/01/24 3:18 p.m.3 views

CVE-2026-24598

Missing Authorization vulnerability in bestwebsoft Multilanguage by BestWebSoft multilanguage allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Multilanguage by BestWebSoft: from n/a through = 1.5.2...

4.3CVSS5.4AI score0.00255EPSS
Exploits0References1
NVD
NVDadded 2026/01/23 3:16 p.m.4 views

CVE-2026-24598

Missing Authorization vulnerability in bestwebsoft Multilanguage by BestWebSoft multilanguage allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Multilanguage by BestWebSoft: from n/a through = 1.5.2...

4.3CVSS0.00255EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/23 2:29 p.m.1 views

CVE-2026-24598 WordPress Multilanguage by BestWebSoft plugin <= 1.5.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in bestwebsoft Multilanguage by BestWebSoft multilanguage allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Multilanguage by BestWebSoft: from n/a through = 1.5.2...

4.3CVSS5.4AI score0.00255EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/01/23 2:29 p.m.2 views

CVE-2026-24598

Missing Authorization vulnerability in bestwebsoft Multilanguage by BestWebSoft multilanguage allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Multilanguage by BestWebSoft: from n/a through = 1.5.2...

4.3CVSS5.9AI score0.00255EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/01/23 2:29 p.m.28 views

CVE-2026-24598 WordPress Multilanguage by BestWebSoft plugin <= 1.5.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in bestwebsoft Multilanguage by BestWebSoft multilanguage allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Multilanguage by BestWebSoft: from n/a through = 1.5.2...

4.3CVSS0.00255EPSS
Exploits0References1
CVE
CVEadded 2026/01/23 2:29 p.m.9 views

CVE-2026-24598

CVE-2026-24598 : The WordPress plugin Multilanguage by BestWebSoft (versions through 1.5.2) contains a Missing Authorization (Broken Access Control) vulnerability. Public documents (NVD, Red Hat, CVE list, PatchStack) confirm affected software and the issue class, but do not provide exploit detai...

4.3CVSS5.4AI score0.00255EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/01/23 12:0 a.m.6 views

WordPress plugin Multilanguage by BestWebSoft has security vulnerabilities.

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.8AI score0.00255EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/23 12:0 a.m.5 views

PT-2026-4432

Name of the Vulnerable Software and Affected Versions bestwebsoft Multilanguage by BestWebSoft versions through 1.5.2 Description The software contains a missing authorization issue related to incorrectly configured access control security levels. Recommendations Update bestwebsoft Multilanguage ...

4.3CVSS5.3AI score0.00255EPSS
Exploits0References4
Patchstack
Patchstackadded 2026/01/15 6:18 a.m.4 views

WordPress Multilanguage by BestWebSoft plugin <= 1.5.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Nabil Irawan in WordPress Plugin Multilanguage by BestWebSoft versions = 1.5.2...

4.3CVSS5.4AI score0.00255EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVEadded 2025/11/07 5:33 p.m.3 views

CVE-2025-58619

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object Injection.This issue affects Falang multilanguage: from n/a through = 1.3.65...

8.8CVSS7AI score0.00313EPSS
Exploits0References1
NVD
NVDadded 2025/11/06 4:15 p.m.3 views

CVE-2025-58619

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object Injection.This issue affects Falang multilanguage: from n/a through = 1.3.65...

8.8CVSS0.00313EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/06 3:54 p.m.3 views

EUVD-2025-38143

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object Injection.This issue affects Falang multilanguage: from n/a through = 1.3.65...

6.4AI score0.00313EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/11/06 3:54 p.m.2 views

CVE-2025-58619 WordPress Falang multilanguage Plugin <= 1.3.65 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object Injection.This issue affects Falang multilanguage: from n/a through = 1.3.65...

8.8CVSS6.6AI score0.00313EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/11/06 12:0 a.m.5 views

PT-2025-45244

Deserialization of Untrusted Data vulnerability in sbouey Falang multilanguage falang allows Object Injection.This issue affects Falang multilanguage: from n/a through = 1.3.65...

8.8CVSS7AI score0.00313EPSS
Exploits0References2
Rows per page
Query Builder