CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

95 matches found

Cvelist•added 2026/05/30 9:29 a.m.•43 views

CVE-2026-7465 Spectra Gutenberg Blocks <= 2.19.25 - Authenticated (Contributor+) Remote Code Execution via Arbitrary PHP Function Call via Block Attributes

The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.19.25. This makes it possible for authenticated attackers, with Contributor-level access and above, to execute code on the server...

8.8CVSS0.0083EPSS

Exploits3References6

RedhatCVE•added 2026/05/12 2:21 p.m.•6 views

CVE-2026-42648

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.22...

4.3CVSS5.8AI score0.00165EPSS

Exploits0References1

CVE•added 2026/04/29 10:40 a.m.•7 views

CVE-2026-42648

CVE-2026-42648 describes a Missing Authorization vulnerability in the Brainstorm Force Spectra ultimate-addons-for-gutenberg for WordPress, affecting versions up to and including 2.19.22. The issue arises from misconfigured access control, enabling an attacker to exploit insufficient authorizatio...

4.3CVSS5.1AI score0.00165EPSS

Exploits0References1

Cvelist•added 2026/04/29 10:40 a.m.•28 views

CVE-2026-42648 WordPress Spectra plugin <= 2.19.22 - Broken Access Control vulnerability

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.22...

4.3CVSS0.00165EPSS

Exploits0References1

EUVD•added 2026/04/29 10:40 a.m.•2 views

EUVD-2026-26218

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.22...

4.3CVSS5.1AI score0.00165EPSS

Exploits0References1

CNNVD•added 2026/04/29 12:0 a.m.•10 views

WordPress Plugin Spectra 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.8AI score0.00165EPSS

Exploits0References1

Positive Technologies•added 2026/04/29 12:0 a.m.•5 views

PT-2026-35906

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.22...

4.3CVSS5.1AI score0.00165EPSS

Exploits0References1

RedhatCVE•added 2026/02/04 7:28 p.m.•2 views

CVE-2026-24982

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.17...

5.3CVSS5.3AI score0.00228EPSS

Exploits0References1

NVD•added 2026/02/03 3:16 p.m.•8 views

CVE-2026-24982

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.17...

5.3CVSS0.00228EPSS

Exploits0References1

Vulnrichment•added 2026/02/03 2:8 p.m.•2 views

CVE-2026-24982 WordPress Spectra plugin <= 2.19.17 - Broken Access Control vulnerability

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.17...

5.3CVSS5.3AI score0.00228EPSS

Exploits0References1

CVE•added 2026/02/03 2:8 p.m.•11 views

CVE-2026-24982

CVE-2026-24982 affects the WordPress plugin Spectra Ultimate Add-ons for Gutenberg (Brainstorm Force) up to version 2.19.17. The issue is a missing/incorrectly configured authorization mechanism that enables a broken access control vulnerability, allowing unauthorized access by bypassing security...

5.3CVSS5.3AI score0.00228EPSS

Exploits0References1

Cvelist•added 2026/02/03 2:8 p.m.•24 views

CVE-2026-24982 WordPress Spectra plugin <= 2.19.17 - Broken Access Control vulnerability

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.17...

5.3CVSS0.00228EPSS

Exploits0References1

EUVD•added 2026/02/03 2:8 p.m.•4 views

EUVD-2026-5241

Missing Authorization vulnerability in Brainstorm Force Spectra ultimate-addons-for-gutenberg allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through = 2.19.17...

5.3CVSS5.3AI score0.00228EPSS

Exploits0References1

CNNVD•added 2026/02/03 12:0 a.m.•3 views

WordPress plugin Spectra Gutenberg Blocks 信息泄露漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

5.3CVSS5.8AI score0.00346EPSS

Exploits0References10

CNNVD•added 2026/02/03 12:0 a.m.•3 views

WordPress plugin Spectra 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

5.3CVSS5.8AI score0.00228EPSS

Exploits0References1

Positive Technologies•added 2026/02/03 12:0 a.m.•7 views

PT-2026-5775

Name of the Vulnerable Software and Affected Versions Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress versions prior to 2.19.18 Description The Spectra Gutenberg Blocks plugin for WordPress is susceptible to information disclosure. The plugin does not verify...

5.3CVSS5.4AI score0.00346EPSS

Exploits0References13

Patchstack•added 2026/02/02 8:8 p.m.•6 views

WordPress Spectra - WordPress Gutenberg Blocks plugin <= 2.12.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Gallery Block vulnerability

WordPress Spectra - WordPress Gutenberg Blocks plugin = 2.12.8 - Authenticated Contributor+ Stored Cross-Site Scripting via Image Gallery Block vulnerability discovered by wesley wcraft in WordPress Plugin Spectra versions = 2.12.8...

6.4CVSS5.2AI score0.00265EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/01/17 2:49 a.m.•4 views

WordPress Spectra plugin <= 2.19.17 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Bao - BlueRock in WordPress Plugin Spectra versions = 2.19.17...

5.3CVSS5.3AI score0.00228EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/01/07 9:18 a.m.•17 views

CVE-2025-1784

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5.9AI score0.00254EPSS

Exploits0References1

NVD•added 2025/12/09 5:15 p.m.•8 views

CVE-2023-23729

Missing Authorization vulnerability in Brainstorm Force Spectra allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spectra: from n/a through 2.3.0...

5.4CVSS0.00213EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by