CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

224023 matches found

CVE•added 5 days ago•14 views

CVE-2026-40798

WPForo Forum plugin for WordPress <= 3.0.4 is affected by an unauthenticated SQL injection vulnerability. The CVE entry cites unauthenticated SQL Injection in wpForo Forum <= 3.0.4, with CVSSv3.1 base score 9.3 (CRITICAL) and impact TIC: Confidentiality High, Availability Low, no privileges...

9.3CVSS5.7AI score0.00283EPSS

Exploits0References1

Vulnrichment•added 5 days ago•4 views

CVE-2026-40799 WordPress Simple Cloudflare Turnstile plugin <= 1.38.0 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in Simple Cloudflare Turnstile = 1.38.0 versions...

5.3CVSS5.2AI score0.00309EPSS

Exploits0References1

CVE•added 5 days ago•6 views

CVE-2026-40796

CVE-2026-40796 affects WordPress WPPizza plugin versions

6.5CVSS5.2AI score0.00345EPSS

Exploits0References1

CVE•added 5 days ago•8 views

CVE-2026-40795

The CVE-2026-40795 entry documents a Broken Access Control issue in the WordPress Amelia plugin, affecting versions <= 2.2. The vulnerability targets subscriber access rights, with the CVSS 3.1 base score of 6.5 (Medium), indicating potential high impact on integrity (I) and no confidentiality...

6.5CVSS5.1AI score0.00271EPSS

Exploits0References1

Vulnrichment•added 5 days ago•4 views

CVE-2026-40795 WordPress Amelia plugin <= 2.2 - Broken Access Control vulnerability

Subscriber Broken Access Control in Amelia = 2.2 versions...

6.5CVSS5.1AI score0.00271EPSS

Exploits0References1

Cvelist•added 5 days ago•24 views

CVE-2026-40794 WordPress myCred plugin <= 3.0.3 - Broken Access Control vulnerability

Subscriber Broken Access Control in myCred = 3.0.3 versions...

6.5CVSS0.00279EPSS

Exploits0References1

Cvelist•added 5 days ago•25 views

CVE-2026-40795 WordPress Amelia plugin <= 2.2 - Broken Access Control vulnerability

Subscriber Broken Access Control in Amelia = 2.2 versions...

6.5CVSS0.00271EPSS

Exploits0References1

CVE•added 5 days ago•5 views

CVE-2026-40794

The CVE concerns WordPress plugin myCred ≤ 3.0.3 with a Broken Access Control vulnerability. Affected software: WordPress plugin myCred (versions up to 3.0.3). The provided sources identify the issue but do not disclose the exact root cause, affected functions/files, or concrete impact details be...

6.5CVSS5.1AI score0.00279EPSS

Exploits0References1

CVE•added 5 days ago•14 views

CVE-2026-40793

CVE-2026-40793 concerns the WordPress Groundhogg plugin (versions earlier than 4.4.1) with a Broken Access Control vulnerability. The public description identifies the issue as a subscriber-level access control flaw in Groundhogg < 4.4.1. The connected documents corroborate that the vulnerabil...

6.5CVSS5.1AI score0.00279EPSS

Exploits0References1

Cvelist•added 5 days ago•24 views

CVE-2026-40793 WordPress Groundhogg plugin < 4.4.1 - Broken Access Control vulnerability

Subscriber Broken Access Control in Groundhogg 4.4.1 versions...

6.5CVSS0.00279EPSS

Exploits0References1

Vulnrichment•added 5 days ago•5 views

CVE-2026-40793 WordPress Groundhogg plugin < 4.4.1 - Broken Access Control vulnerability

Subscriber Broken Access Control in Groundhogg 4.4.1 versions...

6.5CVSS5.1AI score0.00279EPSS

Exploits0References1

CVE•added 5 days ago•5 views

CVE-2026-40792

The vulnerability concerns the WordPress KiviCare plugin (versions

6.3CVSS5.2AI score0.00249EPSS

Exploits0References1

Cvelist•added 5 days ago•28 views

CVE-2026-40792 WordPress KiviCare plugin <= 4.2.1 - Insecure Direct Object References (IDOR) vulnerability

Subscriber Insecure Direct Object References IDOR in KiviCare = 4.2.1 versions...

6.3CVSS0.00249EPSS

Exploits0References1

Vulnrichment•added 5 days ago•3 views

CVE-2026-40790 WordPress WP SMS plugin <= 7.2.1 - Sensitive Data Exposure vulnerability

Subscriber Sensitive Data Exposure in WP SMS = 7.2.1 versions...

6.5CVSS5.2AI score0.00326EPSS

Exploits0References1

Cvelist•added 5 days ago•23 views

CVE-2026-40790 WordPress WP SMS plugin <= 7.2.1 - Sensitive Data Exposure vulnerability

Subscriber Sensitive Data Exposure in WP SMS = 7.2.1 versions...

6.5CVSS0.00326EPSS

Exploits0References1

CVE•added 5 days ago•4 views

CVE-2026-40790

The CVE-2026-40790 entry concerns the WordPress WP SMS plugin, versions ≤ 7.2.1, with a Subscriber Sensitive Data Exposure vulnerability. The connected data specify a network-accessible issue with low attacker privileges, no user interaction, and high confidentiality impact (CVSS v3.1 base 6.5, M...

6.5CVSS5.2AI score0.00326EPSS

Exploits0References1

Vulnrichment•added 5 days ago•4 views

CVE-2026-40789 WordPress Amelia plugin <= 2.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in Amelia = 2.2 versions...

7.5CVSS5.2AI score0.00294EPSS

Exploits0References1

Vulnrichment•added 5 days ago•3 views

CVE-2026-40788 WordPress ChatBot plugin <= 7.9.7 - Broken Access Control vulnerability

Subscriber Broken Access Control in ChatBot = 7.9.7 versions...

7.1CVSS5.1AI score0.00307EPSS

Exploits0References1

Cvelist•added 5 days ago•25 views

CVE-2026-40789 WordPress Amelia plugin <= 2.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in Amelia = 2.2 versions...

7.5CVSS0.00294EPSS

Exploits0References1

CVE•added 5 days ago•5 views

CVE-2026-40788

CVE-2026-40788 affects WordPress ChatBot plugin versions

7.1CVSS5.1AI score0.00307EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by