CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3854 matches found

RedhatCVE•added 2026/06/05 7:37 p.m.•9 views

CVE-2026-3362

The Short Comment Filter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Minimum Count' settings field in all versions up to and including 2.2. This is due to insufficient input sanitization no sanitize callback on registersetting and missing output escaping no escattr ...

4.4CVSS5.7AI score0.00373EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:34 p.m.•9 views

CVE-2026-1322

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.0 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with a readapi scoped OAuth application to create issues and add comments to issues in private projects due t...

8.1CVSS5.5AI score0.00311EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:33 p.m.•8 views

CVE-2026-9730

The Remove NoFollow Commenter URL plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the gmzcommentsettingssave function. This makes it possible for unauthenticated attackers to modify...

4.3CVSS5.4AI score0.00131EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:33 p.m.•8 views

CVE-2026-9015

The Equalize Digital Accessibility Checker – WCAG, ADA, EAA and Section 508 compliance plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.42.0. This is due to the plugin not properly verifying that a user is authorized to perform an action. This mak...

4.3CVSS5.5AI score0.003EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:28 p.m.•7 views

CVE-2026-4138

The DX Unanswered Comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.7. This is due to missing nonce validation on the plugin's settings form in the dxuc-unanswered-comments-admin-page.php file. This makes it possible for...

4.3CVSS5.4AI score0.00193EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:26 p.m.•7 views

CVE-2026-40929

WWBN AVideo is an open source video platform. In versions 29.0 and prior, objects/commentDelete.json.php is a state-mutating JSON endpoint that deletes comments but performs no CSRF validation. It does not call forbidIfIsUntrustedRequest, does not verify a CSRF/global token, and does not check...

5.4CVSS5.3AI score0.00113EPSS

Exploits1References1

RedhatCVE•added 2026/06/05 7:25 p.m.•9 views

CVE-2026-44366

Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.1, a Stored Cross-Site Scripting XSS vulnerability exists in the Vvveb CMS comment submission flow. The author field is submitted by an unauthenticated user on any public post...

6.1CVSS5.5AI score0.0025EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:21 p.m.•9 views

CVE-2026-3876

The Prismatic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'prismaticencoded' pseudo-shortcode in all versions up to, and including, 3.7.3. This is due to insufficient input sanitization and output escaping on user-supplied attributes within the 'prismaticdecode'...

7.2CVSS5.7AI score0.00274EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:20 p.m.•7 views

CVE-2026-41672

A flaw was found in xmldom and @xmldom/xmldom, a JavaScript module for parsing and serializing XML. This vulnerability allows an attacker to inject malicious content into XML comments. By doing so, the attacker can prematurely close a comment and insert unauthorized XML elements into the final...

8.7CVSS4.9AI score0.0034EPSS

Exploits0References9

RedhatCVE•added 2026/06/05 7:13 p.m.•6 views

CVE-2026-40165

authentik is an open-source identity provider. Versions 2025.12.4 and prior, and versions 2026.2.0-rc1 through 2026.2.2 were vulnerable to Authentication Bypass through SAML NameID XML Comment Injection. Due to how authentik extracted the NameID value from a SAML assertion, it was possible for an...

8.7CVSS5.4AI score0.00393EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 7:12 p.m.•7 views

CVE-2026-39382

dbt enables data analysts and engineers to transform their data using the same practices that software engineers use to build applications. Inside the reusable workflow dbt-labs/actions/blob/main/.github/workflows/open-issue-in-repo.yml, the prep job uses peter-evans/find-comment to search for an...

9.3CVSS5.6AI score0.00389EPSS

Exploits0References1

NVD•added 2026/06/05 2:16 p.m.•8 views

CVE-2026-11369

The Comment API GET /api/Comment and POST /api/Comment in the affected application fails to perform authorization checks to verify that the requesting user has access to the object identified by the relatedObjectId. This Insecure Direct Object Reference IDOR vulnerability allows any authenticated...

7.1CVSS0.00207EPSS

Exploits0References1

CVE•added 2026/06/05 12:37 p.m.•17 views

CVE-2026-11369

The CVE-2026-11369 entry concerns an Insecure Direct Object Reference (IDOR) in the Comment API. The affected endpoints are GET /api/Comment and POST /api/Comment. The root cause is missing authorization checks to verify that a user has access to the object identified by relatedObjectId, allowing...

7.1CVSS5.7AI score0.00207EPSS

Exploits0References1