CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3608 matches found

Nuclei•added yesterday•23 views

GiveWP Donation Plugin <= 3.16.1 - Unauthenticated PHP Object Injection

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.16.1. This is due to insufficient input validation on user-supplied data. An unauthenticated attacker can inject a serialized PHP object, which...

10CVSS7.7AI score0.29101EPSS

Exploits3References4

Nuclei•added yesterday•22 views

My Geo Posts Free <= 1.2 - PHP Object Injection

The My Geo Posts Free plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.2 via deserialization of untrusted input. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If ...

9.8CVSS7.5AI score0.0307EPSS

Exploits0References4

Nuclei•added 4 days ago•16 views

Better Search Replace < 1.4.5 - PHP Object Injection

The Better Search Replace plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.4 via deserialization of untrusted input. This makes it possible for unauthenticated attackers to inject a PHP Object. No POP chain is present in the vulnerable plugin. I...

9.8CVSS7.5AI score0.68047EPSS

Exploits2References2

EUVD•added 6 days ago•6 views

EUVD-2025-210258

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS5.3AI score0.00386EPSS

Exploits0References2

EUVD•added 6 days ago•12 views

EUVD-2026-37607

Unauthenticated PHP Object Injection in AI Lab 5.4.2 versions...

9.8CVSS5.3AI score0.0051EPSS

Exploits0References2

NVD•added 6 days ago•5 views

CVE-2026-40757

Unauthenticated PHP Object Injection in Château = 1.2.1 versions...

8.1CVSS0.0025EPSS

Exploits0References1

NVD•added 6 days ago•4 views

CVE-2026-40756

Unauthenticated PHP Object Injection in Zoya = 1.4 versions...

8.1CVSS0.0025EPSS

Exploits0References1

NVD•added 6 days ago•6 views

CVE-2026-39576

Unauthenticated PHP Object Injection in SingleMalt = 1.5 versions...

8.1CVSS0.00395EPSS

Exploits0References1

NVD•added 6 days ago•5 views

CVE-2026-39560

Unauthenticated PHP Object Injection in Hiroshi = 1.5.1 versions...

8.1CVSS0.00308EPSS

Exploits0References1

NVD•added 6 days ago•6 views

CVE-2025-69127

Unauthenticated PHP Object Injection in Plumbing = 1.6 versions...

9.8CVSS0.00386EPSS

Exploits0References1

NVD•added 6 days ago•7 views

CVE-2025-69130

Subscriber PHP Object Injection in Entrepreneur - Booking for Small Businesses WordPress Theme = 3.1.3 versions...

8.8CVSS0.00482EPSS

Exploits0References1

Cvelist•added 6 days ago•26 views

CVE-2025-60236 WordPress Creatify theme <= 1.5 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in EMV Creatify allows Object Injection. This issue affects Creatify: from n/a through 1.5...

9.8CVSS0.00313EPSS

Exploits0References1

NVD•added 6 days ago•4 views

CVE-2026-54194

Contributor PHP Object Injection in Fusion Builder = 3.15.4 versions...

9.8CVSS0.00525EPSS

Exploits0References1

NVD•added 6 days ago•4 views

CVE-2026-49107

Unauthenticated PHP Object Injection in Thrive Apprentice 10.8.10.2 versions...

9.8CVSS0.00375EPSS

Exploits0References1

NVD•added 6 days ago•6 views

CVE-2026-42380

Unauthenticated PHP Object Injection in AI Lab 5.4.2 versions...

9.8CVSS0.0051EPSS

Exploits0References1

NVD•added 6 days ago•7 views

CVE-2026-40761

Unauthenticated PHP Object Injection in Valeska = 1.2.2 versions...

8.1CVSS0.0032EPSS

Exploits0References1

NVD•added 6 days ago•4 views

CVE-2026-40759

Unauthenticated PHP Object Injection in Esmée = 1.4 versions...

8.1CVSS0.0032EPSS

Exploits0References1

NVD•added 6 days ago•5 views

CVE-2026-40739

Unauthenticated PHP Object Injection in LuxeDrive = 1.4 versions...

8.1CVSS0.0032EPSS

Exploits0References1

NVD•added 6 days ago•5 views

CVE-2026-40735

Unauthenticated PHP Object Injection in Reina = 2.1 versions...

8.1CVSS0.00395EPSS

Exploits0References1

NVD•added 6 days ago•4 views

CVE-2026-40725

Unauthenticated PHP Object Injection in WooCommerce Product Filters 2.0.6 versions...

9.8CVSS0.00375EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by