Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

36210 matches found

NVD
NVDadded 2026/04/08 9:16 a.m.2 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS0.00066EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/08 8:52 a.m.14 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS0.00066EPSS
Exploits0References3
CVE
CVEadded 2026/04/08 8:52 a.m.7 views

CVE-2026-25776

Movable Type by Six Apart Ltd. contains a code injection vulnerability that may allow an attacker to execute arbitrary Perl scripts. The CVE-2026-25776 entry lists very high impact across confidentiality, integrity, and availability (per CVSS 4.0/3.0 metrics), with NETWORK attack vector, LOW comp...

9.8CVSS7.5AI score0.00066EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/08 8:52 a.m.2 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS7.5AI score0.00066EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/04/08 8:52 a.m.2 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS7.5AI score0.00066EPSS
Exploits0References4Affected Software5
Cvelist
Cvelistadded 2026/04/08 8:30 a.m.19 views

CVE-2026-39712 WordPress tagDiv Composer plugin <= 5.4.3 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in tagDiv tagDiv Composer td-composer allows Code Injection.This issue affects tagDiv Composer: from n/a through = 5.4.3...

5.3CVSS0.00056EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/08 8:30 a.m.1 views

CVE-2026-39712

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in tagDiv tagDiv Composer td-composer allows Code Injection.This issue affects tagDiv Composer: from n/a through = 5.4.3...

5.3CVSS5.9AI score0.00056EPSS
Exploits0References2
CVE
CVEadded 2026/04/08 8:30 a.m.6 views

CVE-2026-39712

The CVE-2026-39712 issue is in the WordPress tagDiv Composer plugin, specifically the td-composer component, and affects versions up to and including 5.4.3. The root cause is Improper Neutralization of Script-Related HTML Tags, enabling Code Injection/Arbitrary Shortcode Execution. Impact is desc...

5.3CVSS5.9AI score0.00056EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/08 8:30 a.m.2 views

CVE-2026-39640

Cross-Site Request Forgery CSRF vulnerability in mndpsingh287 Theme Editor theme-editor allows Code Injection.This issue affects Theme Editor: from n/a through = 3.2...

5.9AI score0.00021EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/04/08 8:30 a.m.16 views

CVE-2026-39640 WordPress Theme Editor plugin <= 3.2 - Cross Site Request Forgery (CSRF) to Remote Code Execution vulnerability

Cross-Site Request Forgery CSRF vulnerability in mndpsingh287 Theme Editor theme-editor allows Code Injection.This issue affects Theme Editor: from n/a through = 3.2...

9.6CVSS0.00021EPSS
Exploits0References1
CVE
CVEadded 2026/04/08 8:30 a.m.4 views

CVE-2026-39629

CVE-2026-39629 affects kutethemes Uminex WordPress theme versions up to and including 1.0.9. The issue is described as Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) that allows Code Injection via shortcode handling, leading to arbitrary shortcode execution. Concret...

5.3CVSS5.9AI score0.00056EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/08 8:30 a.m.0 views

CVE-2026-39629 WordPress Uminex theme <= 1.0.9 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes Uminex uminex allows Code Injection.This issue affects Uminex: from n/a through = 1.0.9...

5.8AI score0.00056EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/08 8:30 a.m.0 views

CVE-2026-39629

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes Uminex uminex allows Code Injection.This issue affects Uminex: from n/a through = 1.0.9...

5.9AI score0.00056EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/08 8:30 a.m.1 views

CVE-2026-39628

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes DukaMarket dukamarket allows Code Injection.This issue affects DukaMarket: from n/a through = 1.3.0...

5.9AI score0.00056EPSS
Exploits0References2
CVE
CVEadded 2026/04/08 8:30 a.m.3 views

CVE-2026-39628

CVE-2026-39628 affects the WordPress DukaMarket theme (kutethemes)

5.3CVSS5.9AI score0.00056EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/08 8:30 a.m.1 views

CVE-2026-39628 WordPress DukaMarket theme <= 1.3.0 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes DukaMarket dukamarket allows Code Injection.This issue affects DukaMarket: from n/a through = 1.3.0...

5.8AI score0.00056EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/08 8:30 a.m.18 views

CVE-2026-39628 WordPress DukaMarket theme <= 1.3.0 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes DukaMarket dukamarket allows Code Injection.This issue affects DukaMarket: from n/a through = 1.3.0...

5.3CVSS0.00056EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/08 8:30 a.m.16 views

CVE-2026-39625 WordPress TechOne theme <= 3.0.3 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes TechOne techone allows Code Injection.This issue affects TechOne: from n/a through = 3.0.3...

5.3CVSS0.00056EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/08 8:30 a.m.1 views

CVE-2026-39626 WordPress Armania theme <= 1.4.8 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes Armania armania allows Code Injection.This issue affects Armania: from n/a through = 1.4.8...

5.8AI score0.00056EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/08 8:30 a.m.17 views

CVE-2026-39626 WordPress Armania theme <= 1.4.8 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes Armania armania allows Code Injection.This issue affects Armania: from n/a through = 1.4.8...

5.3CVSS0.00056EPSS
Exploits0References1
Rows per page
Query Builder