Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

223 matches found

Circl
Circladded 8 hours ago2 views

CVE-2026-50258

creationtimestamp| type| source ---|---|--- 2026-06-05 13:33:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnkatubr7y2v...

7.8CVSS5.3AI score
Exploits0References1
Circl
Circladded 5 days ago7 views

CVE-2026-10155

creationtimestamp| type| source ---|---|--- 2026-05-31 01:14:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn4fb2pxi327...

5.8CVSS5.8AI score0.00026EPSS
Exploits0References1
Circl
Circladded 2026/05/29 1:20 p.m.6 views

CVE-2025-41279

creationtimestamp| type| source ---|---|--- 2026-05-29 13:20:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmymuebmrv27...

8.6CVSS5.8AI score0.00306EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/05/28 12:0 a.m.8 views

WordPress plugin Advanced Custom Fields: Extended 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

9.8CVSS5.8AI score0.0023EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/05/27 4:28 a.m.5 views

CVE-2025-14481 Yoast SEO <= 26.5 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure via 'post_id' Parameter

The Yoast SEO plugin for WordPress is vulnerable to Insecure Direct Object References in all versions up to, and including, 26.5. This is due to insufficient authorization checks in the Meta Search REST API endpoint that fail to verify post ownership. This makes it possible for authenticated...

4.3CVSS5.7AI score0.00032EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/05/23 8:12 a.m.10 views

CVE-2026-9011

The Ditty – Responsive News Tickers, Sliders, and Lists plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.1.65. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for...

7.5CVSS5.8AI score0.00036EPSS
Exploits0References1
Circl
Circladded 2026/05/20 12:16 a.m.4 views

CVE-2026-44790

creationtimestamp| type| source ---|---|--- 2026-05-20 00:16:19+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mmamu5rnds2m...

6AI score
Exploits0References1
Circl
Circladded 2026/05/14 6:0 p.m.7 views

CVE-2026-8578

creationtimestamp| type| source ---|---|--- 2026-05-14 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260515 2026-05-14 21:37:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mltrmr5sjx2q 2026-05-17 18:00:00+00:00| seen|...

3.1CVSS5.8AI score0.00027EPSS
Exploits0References3
Circl
Circladded 2026/05/12 10:21 a.m.4 views

CVE-2026-1460

creationtimestamp| type| source ---|---|--- 2026-05-12 10:21:58+00:00| seen| https://bsky.app/profile/ctsd-gmbh.bsky.social/post/3mlnkxp5i4e2q...

7.2CVSS5.8AI score0.00077EPSS
Exploits0References1
Circl
Circladded 2026/05/12 8:33 a.m.6 views

CVE-2026-7050

creationtimestamp| type| source ---|---|--- 2026-05-12 08:33:15+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mlnevhmsnt2c 2026-05-13 01:32:24+00:00| seen| https://bsky.app/profile/donwebmedia.bsky.social/post/3mlp5ttfegh2s...

4.3CVSS5.8AI score0.00041EPSS
Exploits0References2
Circl
Circladded 2026/05/11 2:55 p.m.5 views

CVE-2026-8289

creationtimestamp| type| source ---|---|--- 2026-05-11 14:55:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlljryfwx42e...

6.5CVSS5.8AI score0.00045EPSS
Exploits1References1
EUVD
EUVDadded 2026/05/10 3:31 p.m.5 views

EUVD-2022-55979

WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the postid parameter. Attackers can craft URLs to the grunion-form-view.php endpoint with script payloads in the postid parameter ...

6.1CVSS5.9AI score0.00089EPSS
Exploits0References4
NVD
NVDadded 2026/05/10 1:16 p.m.10 views

CVE-2022-50958

WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the postid parameter. Attackers can craft URLs to the grunion-form-view.php endpoint with script payloads in the postid parameter ...

6.1CVSS0.00089EPSS
Exploits0References3
CVE
CVEadded 2026/05/10 12:12 p.m.7 views

CVE-2022-50958

WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting (XSS) vulnerability in grunion-form-view.php via the post_id parameter. Unauthenticated attackers can craft URLs with script payloads in post_id to execute arbitrary JavaScript in victims’ browsers. A public exploit exists per...

6.1CVSS5.9AI score0.00089EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/05/10 12:12 p.m.4 views

CVE-2022-50958 WordPress Plugin Jetpack 9.1 Cross Site Scripting via grunion-form-view.php

WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the postid parameter. Attackers can craft URLs to the grunion-form-view.php endpoint with script payloads in the postid parameter ...

6.1CVSS5.9AI score0.00089EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/05/10 12:12 p.m.26 views

CVE-2022-50958 WordPress Plugin Jetpack 9.1 Cross Site Scripting via grunion-form-view.php

WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the postid parameter. Attackers can craft URLs to the grunion-form-view.php endpoint with script payloads in the postid parameter ...

6.1CVSS0.00089EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/05/10 12:0 a.m.5 views

PT-2026-39483

WordPress Plugin Jetpack 9.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the post id parameter. Attackers can craft URLs to the grunion-form-view.php endpoint with script payloads in the post id paramete...

6.1CVSS5.9AI score0.00089EPSS
Exploits0References4
Circl
Circladded 2026/05/06 2:9 p.m.4 views

CVE-2026-43271

creationtimestamp| type| source ---|---|--- 2026-05-06 14:09:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml6uv3k2sb2t...

5.5CVSS5.8AI score0.00013EPSS
Exploits0References1
Circl
Circladded 2026/05/06 2:54 a.m.3 views

CVE-2025-71256

creationtimestamp| type| source ---|---|--- 2026-05-06 02:54:07+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml5p5ipdlj2k 2026-05-06 05:33:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml5y2ok74h2t 2026-06-01 18:00:00+00:00| seen|...

7.5CVSS5.8AI score0.00062EPSS
Exploits0References3
Circl
Circladded 2026/05/05 5:23 p.m.4 views

CVE-2026-7845

creationtimestamp| type| source ---|---|--- 2026-05-05 17:23:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml4paz6c6m2i...

2.6CVSS5.8AI score0.00014EPSS
Exploits0References1
Rows per page
Query Builder