CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11984 matches found

NVD•added 2 days ago•6 views

CVE-2026-48966

Unauthenticated Cross Site Scripting XSS in Funnel Builder by FunnelKit = 3.15.0.2 versions...

7.1CVSS0.00175EPSS

Exploits0References1

NVD•added 2 days ago•5 views

CVE-2026-42381

Unauthenticated SQL Injection in Funnel Builder by FunnelKit = 3.15.0.1 versions...

9.3CVSS0.00283EPSS

Exploits0References1

CVE•added 2 days ago•13 views

CVE-2026-48966

The CVE concerns the WordPress Funnel Builder by FunnelKit plugin (versions

7.1CVSS5.1AI score0.00175EPSS

Exploits0References1

Cvelist•added 2 days ago•23 views

CVE-2026-48966 WordPress Funnel Builder by FunnelKit plugin <= 3.15.0.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Funnel Builder by FunnelKit = 3.15.0.2 versions...

7.1CVSS0.00175EPSS

Exploits0References1

EUVD•added 2 days ago•3 views

EUVD-2026-36865

Unauthenticated Cross Site Scripting XSS in Funnel Builder by FunnelKit = 3.15.0.2 versions...

7.1CVSS5.1AI score0.00175EPSS

Exploits0References1

Vulnrichment•added 2 days ago•4 views

CVE-2026-48966 WordPress Funnel Builder by FunnelKit plugin <= 3.15.0.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Funnel Builder by FunnelKit = 3.15.0.2 versions...

7.1CVSS5.1AI score0.00175EPSS

Exploits0References1

CVE•added 2 days ago•9 views

CVE-2026-42381

CVE-2026-42381 affects WordPress Funnel Builder by FunnelKit plugin versions

9.3CVSS5.7AI score0.00283EPSS

Exploits0References1

Cvelist•added 2 days ago•22 views

CVE-2026-42381 WordPress Funnel Builder by FunnelKit plugin <= 3.15.0.1 - SQL Injection vulnerability

Unauthenticated SQL Injection in Funnel Builder by FunnelKit = 3.15.0.1 versions...

9.3CVSS0.00283EPSS

Exploits0References1

EUVD•added 2 days ago•3 views

EUVD-2026-36811

Unauthenticated SQL Injection in Funnel Builder by FunnelKit = 3.15.0.1 versions...

9.3CVSS5.7AI score0.00283EPSS

Exploits0References1

CVE•added 2 days ago•19 views

CVE-2026-52704

The vulnerability CVE-2026-52704 affects the WordPress WooCommerce PDF Invoice Builder plugin (

10CVSS5.4AI score0.00314EPSS

Exploits0References1

Cvelist•added 2 days ago•25 views

CVE-2026-52704 WordPress WooCommerce PDF Invoice Builder plugin <= 2.0.8 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Edgar Rojas WooCommerce PDF Invoice Builder allows Remote Code Inclusion. This issue affects WooCommerce PDF Invoice Builder: from n/a through 2.0.8...

10CVSS0.00314EPSS

Exploits0References1

Vulnrichment•added 2 days ago•4 views

CVE-2026-52704 WordPress WooCommerce PDF Invoice Builder plugin <= 2.0.8 - Remote Code Execution (RCE) vulnerability

10CVSS5.4AI score0.00314EPSS

Exploits0References1

EUVD•added 2 days ago•6 views

EUVD-2026-36720

10CVSS5.4AI score0.00314EPSS

Exploits0References1

NVD•added 2 days ago•7 views

CVE-2026-9278

The Form Builder CP WordPress plugin before 1.2.47 does not properly sanitize a form configuration value before storing it and using it as part of a client-side script execution, allowing authenticated users with Editor-level access and above to perform Stored Cross-Site Scripting attacks against...

5.4CVSS0.00159EPSS

Exploits0References1

EUVD•added 2 days ago•7 views

EUVD-2026-36700

5.4CVSS5.2AI score0.00159EPSS

Exploits0References1

CVE•added 2 days ago•7 views

CVE-2026-9278

The CVE-2026-9278 entry concerns the Form Builder CP WordPress plugin prior to 1.2.47. Affected component: form_structure value handling in the plugin’s form configuration. Root cause: improper sanitization before storing and using the value in a client-side script, enabling Stored XSS. Impact: a...

5.4CVSS5.3AI score0.00159EPSS

Exploits0References1

Vulnrichment•added 2 days ago•5 views

CVE-2026-9278 Form Builder CP < 1.2.47 - Editor+ Stored XSS via form_structure

5.2AI score0.00159EPSS

Exploits0References1

Cvelist•added 2 days ago•33 views

CVE-2026-9278 Form Builder CP < 1.2.47 - Editor+ Stored XSS via form_structure

0.00159EPSS

Exploits0References1

Positive Technologies•added 2 days ago•7 views

PT-2026-49237

Name of the Vulnerable Software and Affected Versions WooCommerce PDF Invoice Builder versions prior to 2.0.9 Description Improper Control of Generation of Code allows Remote Code Inclusion, enabling an unauthenticated attacker to perform full code injection via remote file inclusion...

10CVSS5.5AI score0.00314EPSS

Exploits0References6

Positive Technologies•added 2 days ago•5 views

PT-2026-49495

Unauthenticated Cross Site Scripting XSS in Funnel Builder by FunnelKit = 3.15.0.2 versions...

7.1CVSS5.1AI score0.00175EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by