Lucene search
K

225633 matches found

CVE
CVE
added yesterday8 views

CVE-2026-57677

The CVE concerns the WordPress Novalnet Payment Gateway for WooCommerce plugin, affected versions

9.8CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday13 views

CVE-2026-57674 WordPress Timetics plugin <= 1.0.58 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Timetics = 1.0.58 versions...

7.1CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-57674

CVE-2026-57674 affects WordPress Timetics plugin versions up to 1.0.58, with an unauthenticated Cross Site Scripting (XSS) vulnerability. The available documents identify the affected product and the issue type, including a CVSS 3.1 base score of 7.1 (HIGH) with network access, no privileges requ...

7.1CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday14 views

CVE-2026-57673 WordPress Optimole plugin <= 4.2.7 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Optimole = 4.2.7 versions...

7.1CVSS
Exploits0References1
CVE
CVE
added yesterday8 views

CVE-2026-57671

Technical details are not publicly available in the provided documents. Monitor for updates.

7.1CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday13 views

CVE-2026-57671 WordPress perfmatters plugin <= 2.6.4 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in perfmatters = 2.6.4 versions...

7.1CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday12 views

CVE-2026-57670 WordPress Google Maps CP plugin <= 1.2.5 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Google Maps CP = 1.2.5 versions...

7.1CVSS
Exploits0References1
CVE
CVE
added yesterday5 views

CVE-2026-57670

Technical details (affected plugin version specifics, root cause, exploit steps, and remediation) are not publicly available in the provided documents. Monitor for updates.

7.1CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday12 views

CVE-2026-57669 WordPress Advanced Contact form 7 DB plugin <= 2.0.9 - Broken Access Control vulnerability

Subscriber Broken Access Control in Advanced Contact form 7 DB = 2.0.9 versions...

6.5CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-57669

The affected software is the WordPress plugin Advanced Contact form 7 DB (versions

6.5CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday13 views

CVE-2026-57624 WordPress Blocksy Companion Pro plugin <= 2.1.46 - Remote Code Execution (RCE) vulnerability

Unauthenticated Remote Code Execution RCE in Blocksy Companion Pro = 2.1.46 versions...

10CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday14 views

CVE-2026-57621 WordPress Booktics plugin <= 1.0.21 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Booktics = 1.0.21 versions...

9.8CVSS
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-57621

CVE-2026-57621 : Unauthenticated PHP Object Injection in the WordPress plugin Booktics (versions ≤ 1.0.21). Root cause as stated is PHP object injection in Booktics ≤ 1.0.21. CVSS 3.1 base score 9.8 (CRITICAL) with network attack vector, no user interaction, and impact to confidentiality, integri...

9.8CVSS5.8AI score
Exploits0References1
CVE
CVE
added yesterday8 views

CVE-2026-57426

The provided data identifies an Unauthenticated Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Modula – PRO , versions ≤ 2.10.8. Affected component is the Modula – PRO plugin for WordPress. The entry does not specify the root cause, affected files/functions, or the exact payload...

7.1CVSS5.8AI score
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-57366

CVE-2026-57366 : Unauthenticated cross-site scripting in the WordPress WPAdverts plugin (versions

7.1CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday14 views

CVE-2026-57362 WordPress ChatBot plugin <= 8.3.2 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in ChatBot = 8.3.2 versions...

7.1CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-57361

The CVE-2026-57361 entry affects the WordPress Survey Maker plugin ≤ 5.2.2.5, describing an unauthenticated Cross-Site Scripting (XSS) vulnerability. The provided documents specify the vulnerable software and vulnerability type, but do not include technical details about the root cause, impact sp...

7.1CVSS5.8AI score
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-57362

CVE-2026-57362 affects WordPress ChatBot plugin versions ≤ 8.3.2 and is described as unauthenticated reflected XSS. The CVSSv3.1 base score is 7.1 (HIGH) with network attack vector, low confidentiality/integrity/availability impact, user interaction required. The provided documents do not specify...

7.1CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday12 views

CVE-2026-57360 WordPress eCommerce Product Catalog plugin <= 3.5.4 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in eCommerce Product Catalog = 3.5.4 versions...

7.1CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-57360

CVE-2026-57360 affects the WordPress plugin eCommerce Product Catalog (versions ≤ 3.5.4). The vulnerability is an Unauthenticated Cross Site Scripting (XSS) issue. The connected documents provide the affected product and vulnerability type, with no exploit details or remediation/version fix infor...

7.1CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder