Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

234088 matches found

Cvelist
Cvelistadded yesterday8 views

CVE-2026-54815 WordPress Cargo Shipping Location for WooCommerce plugin <= 5.6 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Cargo RD Cargo Shipping Location for WooCommerce allows Blind SQL Injection. This issue affects Cargo Shipping Location for WooCommerce: from n/a through 5.6...

9.3CVSS
Exploits0References1
Cvelist
Cvelistadded yesterday8 views

CVE-2026-54818 WordPress Slimstat Analytics plugin <= 5.4.11 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VeronaLabs Slimstat Analytics allows Blind SQL Injection. This issue affects Slimstat Analytics: from n/a through 5.4.11...

8.5CVSS
Exploits0References1
NVD
NVDadded yesterday3 views

CVE-2026-54811

Unauthenticated SQL Injection in WP eMember v10.9.4 versions...

9.3CVSS
Exploits0References1
NVD
NVDadded yesterday3 views

CVE-2026-54186

Unauthenticated SQL Injection in JobSearch = 3.2.9 versions...

9.3CVSS
Exploits0References1
NVD
NVDadded yesterday2 views

CVE-2026-49084

Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...

9.3CVSS
Exploits0References1
NVD
NVDadded yesterday4 views

CVE-2026-49080

Unauthenticated SQL Injection in wpDataTables = 7.3.6 versions...

9.3CVSS0.00311EPSS
Exploits0References1
NVD
NVDadded yesterday3 views

CVE-2026-49076

Unauthenticated SQL Injection in JetEngine = 3.8.9.1 versions...

9.3CVSS
Exploits0References1
NVD
NVDadded yesterday3 views

CVE-2026-39596

Unauthenticated SQL Injection in Blocksy Companion Pro 2.1.29 versions...

9.3CVSS
Exploits0References1
NVD
NVDadded yesterday3 views

CVE-2026-39438

Unauthenticated SQL Injection in ListingPro = 2.9.10 versions...

9.3CVSS0.00372EPSS
Exploits0References1
NVD
NVDadded yesterday3 views

CVE-2026-22335

Subscriber SQL Injection in WooCommerce Frontend Manager – Ultimate 6.7.7 versions...

8.5CVSS
Exploits0References1
NVD
NVDadded yesterday3 views

CVE-2025-69135

Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin = 2.7.2 versions...

8.5CVSS
Exploits0References1
EUVD
EUVDadded yesterday4 views

EUVD-2026-37703

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Webilia Inc. Listdom allows Blind SQL Injection. This issue affects Listdom: from n/a through 5.4.0...

9.3CVSS5.6AI score
Exploits0References1
Cvelist
Cvelistadded yesterday4 views

CVE-2025-59554 WordPress Advanced Ads – Tracking plugin < 3.0.7 - SQL Injection vulnerability

Unauthenticated SQL Injection in Advanced Ads – Tracking 3.0.7 versions...

9.3CVSS
Exploits0References1
Cvelist
Cvelistadded yesterday9 views

CVE-2026-54811 WordPress WP eMember plugin < v10.9.4 - SQL Injection vulnerability

Unauthenticated SQL Injection in WP eMember v10.9.4 versions...

9.3CVSS
Exploits0References1
CVE
CVEadded yesterday8 views

CVE-2026-54186

CVE-2026-54186 concerns the WordPress JobSearch plugin, affected version range

9.3CVSS5.7AI score
Exploits0References1
CVE
CVEadded yesterday10 views

CVE-2026-54187

CVE-2026-54187 affects the WordPress JetEngine plugin, vulnerable in versions up to 3.8.10.1. The issue is an unauthenticated SQL injection in JetEngine = 3.8.10.2 or later and implement mitigations per vendor guidance. The documents do not indicate in-the-wild exploitation or CVSS vectors beyond...

9.3CVSS5.7AI score
Exploits0References1
Cvelist
Cvelistadded yesterday8 views

CVE-2026-54186 WordPress JobSearch plugin <= 3.2.9 - SQL Injection vulnerability

Unauthenticated SQL Injection in JobSearch = 3.2.9 versions...

9.3CVSS
Exploits0References1
CVE
CVEadded yesterday8 views

CVE-2026-54185

CVE-2026-54185 – WordPress Cornerstone plugin (

8.5CVSS5.7AI score
Exploits0References1
CVE
CVEadded yesterday12 views

CVE-2026-49084

JetEngine (WordPress plugin) versions earlier than 3.8.9.1 are affected by unauthenticated SQL Injection. The vulnerability is described as a high-severity (CVSS 3.1: 9.3) issue with network access and no required privileges, impacting confidentiality. A fix is available in 3.8.9.1 and later; upg...

9.3CVSS5.7AI score
Exploits0References1
Cvelist
Cvelistadded yesterday5 views

CVE-2026-49084 WordPress JetEngine plugin < 3.8.9.1 - SQL Injection vulnerability

Unauthenticated SQL Injection in JetEngine 3.8.9.1 versions...

9.3CVSS
Exploits0References1
Rows per page
Query Builder