37617 matches found
CVE-2026-8351
creationtimestamp| type| source ---|---|--- 2026-07-03 10:03:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpqc7hkl742w 2026-07-03 20:16:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mpreg665oi2z 2026-07-03 22:35:03+00:00| seen|...
CVE-2026-9545
creationtimestamp| type| source ---|---|--- 2026-07-03 09:56:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpqbriwjim22 2026-07-03 21:33:23+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpriqdj5vb2n...
CVE-2026-12167
creationtimestamp| type| source ---|---|--- 2026-07-03 09:30:54+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqaegcnxc2q 2026-07-03 10:39:55+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqe7tchbv2u...
CVE-2026-4967
creationtimestamp| type| source ---|---|--- 2026-07-03 09:13:56+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mpq7g3hxl62w 2026-07-03 21:36:05+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpriv64ea32b...
CVE-2026-54886
creationtimestamp| type| source ---|---|--- 2026-07-03 08:38:10+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq5g4fr6a2m 2026-07-03 10:36:50+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqe2coepy2p...
CVE-2026-50282
creationtimestamp| type| source ---|---|--- 2026-07-03 08:24:19+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mpq4ndri4a2i 2026-07-03 08:24:29+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq4neltfq2n 2026-07-03 09:30:24+00:00| seen|...
CVE-2026-4804
The Zakra theme for WordPress is vulnerable to Stored Cross-Site Scripting via post meta values in all versions up to, and including, 4.2.0. This is due to the theme registering three post meta fields zakramenuitemcolor, zakramenuitemhovercolor, and zakramenuitemactivecolor with 'showinrest' = tr...
CVE-2026-4804
The Zakra WordPress theme (
CVE-2026-11900
The Ad Inserter – Ad Manager & AdSense Ads plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to and including 2.8.16 via the 'data' attribute of the adinserter shortcode. This is due to the replaceaitags function processing a reusable-block-N tag pattern that...
CVE-2026-11900
The CVE-2026-11900 entry concerns the WordPress plugin Ad Inserter – Ad Manager & AdSense Ads up to version 2.8.16. It is vulnerable to an Insecure Direct Object Reference via the shortcodes’ data attribute. The replace_ai_tags() function processes a {reusable-block-N} pattern by calling get_post...
EUVD-2026-41520
The Ad Inserter – Ad Manager & AdSense Ads plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to and including 2.8.16 via the 'data' attribute of the adinserter shortcode. This is due to the replaceaitags function processing a reusable-block-N tag pattern that...
CVE-2026-50748
creationtimestamp| type| source ---|---|--- 2026-07-03 07:06:10+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppybm6qum2k 2026-07-03 21:35:42+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mpriuhp4u22r...
CVE-2026-8921
creationtimestamp| type| source ---|---|--- 2026-07-03 06:42:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppwxkbkw72u 2026-07-03 19:36:41+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mprc7nvnqc2n...
CVE-2026-13040
creationtimestamp| type| source ---|---|--- 2026-07-03 05:56:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppuf2z6mv2w 2026-07-03 11:16:07+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mpqgakvqjn2x 2026-07-03 11:17:22+00:00| seen|...
CVE-2026-9626
The JSON API User plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'content' parameter of the postcomment API endpoint in versions up to, and including, 4.1.0 This is due to insufficient input sanitization in the postcomment function, which passes the attacker-controlled...
EUVD-2026-41490
The JSON API User plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'content' parameter of the postcomment API endpoint in versions up to, and including, 4.1.0 This is due to insufficient input sanitization in the postcomment function, which passes the attacker-controlled...
CVE-2026-58652
creationtimestamp| type| source ---|---|--- 2026-07-03 04:04:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppo4hmy6r2j 2026-07-03 10:25:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqdguittd2n...
CVE-2026-13373
creationtimestamp| type| source ---|---|--- 2026-07-03 03:16:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpplhrjxmc2i 2026-07-03 19:00:22+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpra6phkd22u...
CVE-2026-13375
creationtimestamp| type| source ---|---|--- 2026-07-03 03:11:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppl6t2q2w2a 2026-07-03 18:57:24+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpr7zfqp3e2b...
CVE-2026-13377
creationtimestamp| type| source ---|---|--- 2026-07-03 03:06:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mppkvul2s423 2026-07-03 19:01:16+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpraacul4g2n...