CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

219482 matches found

CVE•added 2026/06/17 9:51 a.m.•16 views

CVE-2026-49081

The CVE-2026-49081 entry notes an Unauthenticated Broken Access Control in the WordPress User Registration Stripe plugin, affecting versions

8.2CVSS5.2AI score0.00291EPSS

Exploits0References1

CVE•added 2026/06/17 9:51 a.m.•15 views

CVE-2026-49072

The CVE-2026-49072 entry covers a Broken Access Control issue in the WordPress WooCommerce Anti-Fraud plugin (versions

6.5CVSS5.1AI score0.00309EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:51 a.m.•25 views

CVE-2026-45436 WordPress WPBakery Page Builder plugin <= 8.7.2 - Broken Access Control vulnerability

Subscriber Broken Access Control in WPBakery Page Builder = 8.7.2 versions...

6.5CVSS0.00304EPSS

Exploits0References1

CVE•added 2026/06/17 9:51 a.m.•36 views

CVE-2026-45436

CVE-2026-45436 affects WordPress WPBakery Page Builder plugin for WordPress, specifically versions

6.5CVSS5.1AI score0.00304EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:51 a.m.•25 views

CVE-2026-40726 WordPress User Registration Stripe plugin <= 1.3.14 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in User Registration Stripe = 1.3.14 versions...

8.2CVSS0.00244EPSS

Exploits0References1

CVE•added 2026/06/17 9:51 a.m.•9 views

CVE-2026-40726

CVE-2026-40726 affects the WordPress plugin User Registration Stripe (versions

8.2CVSS5.2AI score0.00244EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:50 a.m.•27 views

CVE-2026-40723 WordPress Bricks Builder theme <= 2.1.4 - Broken Access Control vulnerability

Subscriber Broken Access Control in Bricks Builder = 2.1.4 versions...

4.3CVSS0.00243EPSS

Exploits0References1

CVE•added 2026/06/17 9:50 a.m.•11 views

CVE-2026-40723

The advisory describes CVE-2026-40723 as a Broken Access Control issue in the WordPress Bricks Builder theme, affecting versions

4.3CVSS5.1AI score0.00243EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:50 a.m.•27 views

CVE-2026-39595 WordPress W3 Total Cache plugin <= 2.9.1 - Broken Access Control vulnerability

Author Broken Access Control in W3 Total Cache = 2.9.1 versions...

4.7CVSS0.0021EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:50 a.m.•26 views

CVE-2026-24611 WordPress MetForm Pro plugin <= 3.9.1 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in MetForm Pro = 3.9.1 versions...

9.1CVSS0.00437EPSS

Exploits0References1

CVE•added 2026/06/17 9:50 a.m.•13 views

CVE-2026-24611

CVE-2026-24611 affects WordPress MetForm Pro plugin (versions

9.1CVSS5.1AI score0.00437EPSS

Exploits0References1

CVE•added 2026/06/17 9:50 a.m.•8 views

CVE-2026-24610

CVE-2026-24610: A Broken Access Control vulnerability in WordPress MetForm Pro plugin (versions ≤ 3.9.1) potentially allows a subscriber to access restricted functionality. Public technical details are limited in the provided documents; PatchStack lists the issue, but no remediation version is st...

4.3CVSS5.1AI score0.00243EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:50 a.m.•28 views

CVE-2026-24610 WordPress MetForm Pro plugin <= 3.9.1 - Broken Access Control vulnerability

Subscriber Broken Access Control in MetForm Pro = 3.9.1 versions...

4.3CVSS0.00243EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:50 a.m.•26 views

CVE-2026-24575 WordPress WishList Member X plugin <= 3.29.0 - Broken Access Control vulnerability

Subscriber Broken Access Control in WishList Member X = 3.29.0 versions...

4.3CVSS0.00259EPSS

Exploits0References1

CVE•added 2026/06/17 9:50 a.m.•11 views

CVE-2026-24575

CVE-2026-24575 affects WordPress WishList Member X plugin

4.3CVSS5.1AI score0.00259EPSS

Exploits0References1

CVE•added 2026/06/17 9:50 a.m.•9 views

CVE-2026-22343

CVE-2026-22343 describes an which affects the WordPress Dating Theme (DA10) up to version 11.2.0, with an Unauthenticated Broken Access Control vulnerability. The connected records confirm an unauthenticated path to perform actions that should require authorization, indicating potential impact on...

8.6CVSS5.2AI score0.00261EPSS

Exploits0References1

Cvelist•added 2026/06/17 9:50 a.m.•26 views

CVE-2026-22343 WordPress WordPress Dating Theme theme <= 11.2.0 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in WordPress Dating Theme = 11.2.0 versions...

8.6CVSS0.00261EPSS

Exploits0References1

RedHat Linux•added 2026/06/17 9:22 a.m.•4 views

kernel: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach()

A flaw was found in the Linux kernel's IPv6 ICMP error generation. A remote attacker could send a specially crafted IPv4 ICMP error packet with a Common Internet Protocol Security Option CIPSO IP option. This could lead to incorrect handling of packet control block data when generating an IPv6 IC...

9.8CVSS5.5AI score0.00422EPSS

Exploits0References5

RedHat Linux•added 2026/06/17 9:22 a.m.•5 views

kernel: netfilter: xt_tcpmss: check remaining length before reading optlen

A flaw was found in the Linux kernel, specifically within the netfilter: xttcpmss module. A remote attacker could exploit this vulnerability by sending a specially crafted TCP packet. The TCP option parser does not properly validate the remaining option length, which results in an out-of-bounds...

8.2CVSS5.5AI score0.00463EPSS

Exploits0References5

RedHat Linux•added 2026/06/17 9:22 a.m.•6 views

kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. A race condition exists in the SCTPSENDALL path where a cached list entry is not properly revalidated after the socket lock is temporarily released. This allows a local attacker or a remote attacker v...

7.8CVSS5.8AI score0.00125EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by