8659 matches found
CVE-2026-27419
Subscriber Arbitrary File Upload in Zegen = 1.1.9 versions...
CVE-2025-69094
Subscriber SQL Injection in Unicamp = 2.2.2 versions...
CVE-2025-69132
Subscriber Sensitive Data Exposure in Corpkit = 1.0.5 versions...
EUVD-2026-41302
Subscriber Broken Access Control in Booked = 3.0.0 versions...
CVE-2026-57746
CVE-2026-57746 concerns the WordPress Booked plugin (versions up to and including 3.0.0) where a Broken Access Control vulnerability is described. The Initial document notes only the affected software and version range, with the impact stated as access control issues; no root cause, affected file...
CVE-2026-57730
CVE-2026-57730 concerns the WordPress Flatsome theme (
CVE-2026-57730
Subscriber Broken Access Control in Flatsome = 3.20.5 versions...
CVE-2026-57685
CVE-2026-57685: A Broken Access Control vulnerability exists in WordPress Martfury - WooCommerce Marketplace Theme (versions
CVE-2026-57685 WordPress Martfury - WooCommerce Marketplace WordPress theme theme <= 3.2.8 - Broken Access Control vulnerability
Subscriber Broken Access Control in Martfury - WooCommerce Marketplace WordPress Theme = 3.2.8 versions...
EUVD-2026-41290
Subscriber Server Side Request Forgery SSRF in GeoDirectory = 2.8.161 versions...
CVE-2026-57669
The affected software is the WordPress plugin Advanced Contact form 7 DB (versions
CVE-2026-57355 WordPress Classified Listing plugin <= 5.4.2 - Broken Access Control vulnerability
Subscriber Broken Access Control in Classified Listing = 5.4.2 versions...
CVE-2026-57354
The CVE-2026-57354 entry describes a Subscriber Cross Site Scripting (XSS) vulnerability in the WordPress JetReviews plugin limited to versions
CVE-2026-57354
Subscriber Cross Site Scripting XSS in JetReviews = 3.0.0.1 versions...
CVE-2026-57353
The CVE concerns WordPress Link Whisper Premium plugin <= 2.9.0 with a Broken Access Control issue. The accompanying CVSS data (Patchstack, v3.1) indicates an external attack over network, with low privileges and no user interaction, potentially affecting integrity (I: High) while confidential...
CVE-2026-57347 WordPress Hotel Booking Lite plugin <= 6.0.3 - Sensitive Data Exposure vulnerability
Subscriber Sensitive Data Exposure in Hotel Booking Lite = 6.0.3 versions...
CVE-2026-57347
CVE-2026-57347 affects the WordPress plugin Hotel Booking Lite
CVE-2026-57342 WordPress ShortPixel Adaptive Images plugin <= 3.11.3 - Cross Site Scripting (XSS) vulnerability
Subscriber Cross Site Scripting XSS in ShortPixel Adaptive Images = 3.11.3 versions...
CVE-2026-57342
The CVE-2026-57342 entry concerns the WordPress ShortPixel Adaptive Images plugin, affected versions are
CVE-2025-69133
Subscriber Local File Inclusion in Tourmaster = 5.4.5 versions...