Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

CVE
CVEadded 2026/06/17 9:51 a.m.20 views

CVE-2026-49084

JetEngine (WordPress plugin) versions earlier than 3.8.9.1 are affected by unauthenticated SQL Injection. The vulnerability is described as a high-severity (CVSS 3.1: 9.3) issue with network access and no required privileges, impacting confidentiality. A fix is available in 3.8.9.1 and later; upg...

9.3CVSS5.7AI score0.00283EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/17 9:51 a.m.26 views

CVE-2026-49075 WordPress JetEngine plugin <= 3.8.9.1 - PHP Object Injection vulnerability

Contributor PHP Object Injection in JetEngine = 3.8.9.1 versions...

9.8CVSS0.00375EPSS
Exploits0References1
CVE
CVEadded 2026/06/17 9:51 a.m.10 views

CVE-2026-49074

CVE-2026-49074 affects the WordPress JetEngine plugin (versions &lt;= 3.8.9.1). The description specifies an Unauthenticated Cross Site Scripting (XSS) vulnerability in JetEngine

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/06/16 1:5 p.m.7 views

WordPress JetEngine plugin <= 3.8.10 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by VanTastic in WordPress Plugin JetEngine versions = 3.8.10...

7.1CVSS5.1AI score0.00146EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2026/06/15 2:5 p.m.4 views

WordPress JetEngine plugin <= 3.8.10.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by VanTastic in WordPress Plugin JetEngine versions = 3.8.10.1...

9.3CVSS5.8AI score0.00291EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2026/06/12 11:53 a.m.5 views

WordPress JetEngine plugin <= 3.8.10 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by VanTastic in WordPress Plugin JetEngine versions = 3.8.10...

9.8CVSS5.5AI score0.00375EPSS
Exploits0Affected Software1
Cvelist
Cvelistadded 2026/05/25 10:34 p.m.23 views

CVE-2026-42774 WordPress JetEngine plugin <= 3.8.8.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Crocoblock JetEngine allows SQL Injection. This issue affects JetEngine: from n/a through 3.8.8.1...

9.3CVSS0.00372EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/04/30 3:28 p.m.5 views

WordPress JetEngine plugin <= 3.8.8.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by daroo in WordPress Plugin JetEngine versions = 3.8.8.1...

5.9AI score0.00372EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2026/03/25 8:20 a.m.7 views

WordPress JetEngine plugin <= 3.8.6.1 - Unauthenticated SQL Injection via Listing Grid 'filtered_query' Parameter vulnerability

Unauthenticated SQL Injection via Listing Grid 'filteredquery' Parameter vulnerability discovered by hoshino in WordPress Plugin JetEngine versions = 3.8.6.1...

7.5CVSS5.9AI score0.00322EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/02/20 3:46 p.m.21 views

CVE-2025-68495 WordPress JetEngine plugin <= 3.8.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetEngine jet-engine allows Reflected XSS.This issue affects JetEngine: from n/a through = 3.8.0...

7.1CVSS0.0018EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/02/11 11:52 a.m.4 views

WordPress JetEngine plugin <= 3.8.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Bonds in WordPress Plugin JetEngine versions = 3.8.0...

7.1CVSS5.4AI score0.0018EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichmentadded 2026/01/22 4:51 p.m.3 views

CVE-2025-67923 WordPress JetEngine plugin <= 3.7.7 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetEngine jet-engine allows Reflected XSS.This issue affects JetEngine: from n/a through = 3.7.7...

7.1CVSS5.9AI score0.00256EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/01/07 11:52 a.m.23 views

CVE-2025-69333 WordPress JetEngine plugin <= 3.8.1.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Crocoblock JetEngine jet-engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetEngine: from n/a through = 3.8.1.1...

4.3CVSS0.00162EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/01/07 11:52 a.m.2 views

CVE-2025-69333 WordPress JetEngine plugin <= 3.8.1.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Crocoblock JetEngine jet-engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetEngine: from n/a through = 3.8.1.1...

4.3CVSS5.8AI score0.00162EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/08/20 8:3 a.m.10 views

CVE-2025-53194 WordPress JetEngine <= 3.7.0 - Remote Code Execution (RCE) Vulnerability

Deserialization of Untrusted Data vulnerability in Crocoblock JetEngine jet-engine allows Code Injection.This issue affects JetEngine: from n/a through = 3.7.0...

8.5CVSS0.00347EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/08/20 8:3 a.m.3 views

CVE-2025-53195 WordPress JetEngine plugin <= 3.7.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetEngine allows Stored XSS. This issue affects JetEngine: from n/a through 3.7.0...

6.5CVSS6.9AI score0.0025EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/08/20 8:3 a.m.9 views

CVE-2025-53196 WordPress JetEngine <= 3.7.0 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetEngine jet-engine allows Retrieve Embedded Sensitive Data.This issue affects JetEngine: from n/a through = 3.7.0...

6.5CVSS0.00459EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/08/20 8:3 a.m.2 views

CVE-2025-53196 WordPress JetEngine <= 3.7.0 - Sensitive Data Exposure Vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Crocoblock JetEngine jet-engine allows Retrieve Embedded Sensitive Data.This issue affects JetEngine: from n/a through = 3.7.0...

6.5CVSS5.9AI score0.00459EPSS
Exploits0References1
Patchstack
Patchstackadded 2025/07/16 10:56 a.m.5 views

WordPress JetEngine <= 3.7.0 - Sensitive Data Exposure Vulnerability

Sensitive Data Exposure Vulnerability discovered by stealthcopter in WordPress Plugin JetEngine versions = 3.7.0...

6.5CVSS6.7AI score0.00459EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2025/07/13 10:23 p.m.38 views

WordPress JetEngine <= 3.7.0 - Remote Code Execution (RCE) Vulnerability

Remote Code Execution RCE Vulnerability discovered by stealthcopter in WordPress Plugin JetEngine versions = 3.7.0...

8.5CVSS7.3AI score0.00347EPSS
Exploits0Affected Software1
Rows per page
Query Builder