239 matches found
CVE-2026-56068
Unauthenticated SQL Injection in JetEngine = 3.8.10.2 versions...
EUVD-2026-39721
Unauthenticated SQL Injection in JetEngine = 3.8.10.2 versions...
CVE-2026-56068 WordPress JetEngine plugin <= 3.8.10.2 - SQL Injection vulnerability
Unauthenticated SQL Injection in JetEngine = 3.8.10.2 versions...
CVE-2026-56068
JetEngine WordPress plugin versions ≤ 3.8.10.2 are affected by an unauthenticated SQL injection vulnerability . The connected documents provide the vulnerability type and affected versions but do not include concrete technical details (vulnerable parameter/input, root cause specifics, nor a remed...
WordPress JetEngine plugin <= 3.8.10.2 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Rafie Muhammad in WordPress Plugin JetEngine versions = 3.8.10.2...
EUVD-2026-37632
Unauthenticated SQL Injection in JetEngine = 3.8.10.1 versions...
EUVD-2026-37634
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.10 versions...
EUVD-2026-37633
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.10 versions...
EUVD-2026-37628
Unauthenticated PHP Object Injection in JetEngine = 3.8.10 versions...
EUVD-2026-37621
Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...
EUVD-2026-37616
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.9.1 versions...
EUVD-2026-37618
Unauthenticated SQL Injection in JetEngine = 3.8.9.1 versions...
EUVD-2026-37617
Contributor PHP Object Injection in JetEngine = 3.8.9.1 versions...
EUVD-2026-37552
The JetEngine plugin for WordPress is vulnerable to SQL injection in all versions up to and including 3.8.10.1. The listingloadmore AJAX handler accepts a filteredquery parameter that is intentionally excluded from the HMAC query signature check to support front-end filter integration. However,...
CVE-2026-54187
Unauthenticated SQL Injection in JetEngine = 3.8.10.1 versions...
CVE-2026-54189
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.10 versions...
CVE-2026-54188
Unauthenticated Cross Site Scripting XSS in JetEngine = 3.8.10 versions...
CVE-2026-52706
Unauthenticated PHP Object Injection in JetEngine = 3.8.10 versions...
CVE-2026-49084
Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...
CVE-2026-49075
Contributor PHP Object Injection in JetEngine = 3.8.9.1 versions...