CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

21201 matches found

ATTACKERKB•added 2026/05/26 6:50 a.m.•4 views

CVE-2026-39655

Missing Authorization vulnerability in TeconceTheme Mayosis Core allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Mayosis Core: from n/a through 5.4.7...

5.3CVSS5.8AI score0.00037EPSS

Exploits0References2

Cvelist•added 2026/05/26 6:50 a.m.•38 views

CVE-2026-39655 WordPress Mayosis Core plugin <= 5.4.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in TeconceTheme Mayosis Core allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Mayosis Core: from n/a through 5.4.7...

5.3CVSS0.00037EPSS

Exploits0References1

CVE•added 2026/05/26 1:42 a.m.•24 views

CVE-2026-4795

CVE-2026-4795 describes a missing authorization vulnerability in Zyxel GS1200 series switches (GS1200-5v3/8v3/5HPv3/8HPv3/10v3) up to firmware versions noted. The issue allows a LAN-based, unauthenticated attacker to read the system configuration from a log file via a crafted HTTP request. The co...

6.5CVSS5.8AI score0.00042EPSS

Exploits0References1

Vulnrichment•added 2026/05/26 1:42 a.m.•4 views

CVE-2026-4795

A missing authorization vulnerability in Zyxel GS1200-5v3 firmware versions through 1.00ACPS.2C0, GS1200-8v3 firmware versions through 1.00ACPT.2C0, GS1200-5HPv3 firmware versions through 1.00ACPU.2C0, GS1200-8HPv3 firmware versions through 1.00ACPV.2C0, and GS1200-10v3 firmware versions through...

6.5CVSS5.8AI score0.00042EPSS

Exploits0References1

Positive Technologies•added 2026/05/26 12:0 a.m.•9 views

PT-2026-43383

Missing Authorization vulnerability in bPlugins Tiktok Feed allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Tiktok Feed: from n/a through 1.0.24...

4.3CVSS5.8AI score0.00029EPSS

Exploits0References2

Positive Technologies•added 2026/05/26 12:0 a.m.•6 views

PT-2026-43413

Name of the Vulnerable Software and Affected Versions Woocommerce Envato Affiliates versions prior to 1.2.2 Description A missing authorization issue allows access to functionality that is not properly constrained by Access Control Lists ACLs, which are sets of rules that define which users or...

7.1CVSS5.8AI score0.0004EPSS

Exploits0References4

CNNVD•added 2026/05/26 12:0 a.m.•5 views

kavita 安全漏洞

Kavita is a fast and feature-rich cross-platform reading server developed by Kavita OpenSource. Versions of Kavita prior to 0.9.0 contained security vulnerabilities. These vulnerabilities stemmed from the lack of library-level authorization for download, size checking, and chapter metadata...

5.9CVSS5.8AI score0.00047EPSS

Exploits0References1

Positive Technologies•added 2026/05/26 12:0 a.m.•9 views

PT-2026-43176

A missing authorization vulnerability in Zyxel GS1200-5v3 firmware versions through 1.00ACPS.2C0, GS1200-8v3 firmware versions through 1.00ACPT.2C0, GS1200-5HPv3 firmware versions through 1.00ACPU.2C0, GS1200-8HPv3 firmware versions through 1.00ACPV.2C0, and GS1200-10v3 firmware versions through...

6.5CVSS5.8AI score0.00042EPSS

Exploits0References1

Positive Technologies•added 2026/05/26 12:0 a.m.•10 views

PT-2026-43201

Missing Authorization vulnerability in Webful Creations RepairBuddy allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects RepairBuddy: from n/a through 4.1121...

4.3CVSS5.8AI score0.00029EPSS

Exploits0References1

Positive Technologies•added 2026/05/26 12:0 a.m.•7 views

PT-2026-43386

Missing Authorization vulnerability in Magepeople inc. WpTravelly allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WpTravelly: from n/a through 2.1.5...

6.3CVSS5.8AI score0.00038EPSS

Exploits0References2

Positive Technologies•added 2026/05/26 12:0 a.m.•6 views

PT-2026-43451

TL;DR This vulnerability affects all Kirby sites where users of a particular role have no permission to access pages pages.access permission is disabled. This can be due to configuration in the user blueprints, via options in the model blueprints or via a combination of both settings. Kirby sites...

6CVSS5.7AI score

Exploits0References5

NVD•added 2026/05/25 11:16 p.m.•6 views

CVE-2026-45209

Missing Authorization vulnerability in edwardplainview MyCryptoCheckout allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects MyCryptoCheckout: from n/a through 2.161...

7.5CVSS0.00042EPSS

Exploits0References1

NVD•added 2026/05/25 11:16 p.m.•8 views

CVE-2026-42776

Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sunshine Photo Cart: from n/a through 3.6.7...

6.3CVSS0.00038EPSS

Exploits0References1

NVD•added 2026/05/25 11:16 p.m.•6 views

CVE-2026-45438

Missing Authorization vulnerability in WebToffee Smart Coupons for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Smart Coupons for WooCommerce: from n/a before 2.3.0...

7.5CVSS0.00037EPSS

Exploits0References1

NVD•added 2026/05/25 11:16 p.m.•6 views

CVE-2026-42763

Missing Authorization vulnerability in SePay team SePay Gateway allows Retrieve Embedded Sensitive Data. This issue affects SePay Gateway: from n/a through 1.1.20...

6.5CVSS0.00032EPSS

Exploits0References1

NVD•added 2026/05/25 11:16 p.m.•9 views

CVE-2026-32389

Missing Authorization vulnerability in Linethemes NanoCare allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects NanoCare: from n/a before 1.2.2...

5.4CVSS0.0004EPSS

Exploits0References1

CVE•added 2026/05/25 10:42 p.m.•12 views

CVE-2026-32389

The CVE affects WordPress NanoCare theme prior to version 1.2.2, where a Missing Authorization vulnerability enables Broken Access Control due to incorrectly configured access control security levels in NanoCare. Affected component is the NanoCare WordPress theme; root cause is improper authoriza...

5.4CVSS5.8AI score0.0004EPSS

Exploits0References1

Vulnrichment•added 2026/05/25 10:42 p.m.•6 views

CVE-2026-32389 WordPress NanoCare theme < 1.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Linethemes NanoCare allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects NanoCare: from n/a before 1.2.2...

5.4CVSS5.8AI score0.0004EPSS

Exploits0References1

Cvelist•added 2026/05/25 10:42 p.m.•16 views

CVE-2026-32389 WordPress NanoCare theme < 1.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Linethemes NanoCare allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects NanoCare: from n/a before 1.2.2...

5.4CVSS0.0004EPSS

Exploits0References1

EUVD•added 2026/05/25 10:42 p.m.•10 views

EUVD-2026-31753

Missing Authorization vulnerability in Linethemes NanoCare allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects NanoCare: from n/a before 1.2.2...

5.4CVSS5.8AI score0.0004EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by