CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

18985 matches found

CVE•added 6 days ago•9 views

CVE-2026-40735

Summary: CVE-2026-40735 concerns unauthenticated PHP Object Injection in WordPress Reina theme versions <= 2.1. The vulnerability is tied to the Reina plugin/theme codebase and is described as an unauthenticated PHP Object Injection, with CVSSv3.1 impact vector indicating high severity (8.1 ba...

8.1CVSS5.3AI score0.00395EPSS

Exploits0References1

Cvelist•added 6 days ago•25 views

CVE-2026-40731 WordPress ChapterOne theme <= 1.7 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in ChapterOne = 1.7 versions...

8.1CVSS0.00423EPSS

Exploits0References1

CVE•added 6 days ago•5 views

CVE-2026-40731

The CVE CVE-2026-40731 documents an Unauthenticated Local File Inclusion in the WordPress ChapterOne theme, version

8.1CVSS5.2AI score0.00423EPSS

Exploits0References1

Cvelist•added 6 days ago•26 views

CVE-2026-40723 WordPress Bricks Builder theme <= 2.1.4 - Broken Access Control vulnerability

Subscriber Broken Access Control in Bricks Builder = 2.1.4 versions...

4.3CVSS0.00243EPSS

Exploits0References1

CVE•added 6 days ago•8 views

CVE-2026-39589

The CVE-2026-39589 affects the WordPress Webenvo theme

9.9CVSS5.2AI score0.00434EPSS

Exploits0References1

Cvelist•added 6 days ago•25 views

CVE-2026-39573 WordPress Mildhill theme <= 1.5 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Mildhill = 1.5 versions...

8.1CVSS0.00395EPSS

Exploits0References1

Cvelist•added 6 days ago•22 views

CVE-2026-39582 WordPress Hitek theme < 1.8.3 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Hitek 1.8.3 versions...

8.1CVSS0.00338EPSS

Exploits0References1

CVE•added 6 days ago•6 views

CVE-2026-39573

CVE-2026-39573 : Unauthenticated PHP Object Injection in WordPress Mildhill theme <= 1.5. Affected component: Mildhill theme (WordPress). Root cause: PHP Object Injection vulnerability. Impact: high across confidentiality, integrity, and availability (CVSSv3.1: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/...

8.1CVSS5.3AI score0.00395EPSS

Exploits0References1

CVE•added 6 days ago•5 views

CVE-2026-39582

CVE-2026-39582 affects the WordPress Hitek theme prior to version 1.8.3, with an unauthenticated Local File Inclusion vulnerability in the theme. The CVSSv3.1 score is 8.1 (HIGH), driven by network access, high attack complexity, no privileges required, and impacts to confidentiality, integrity, ...

8.1CVSS5.2AI score0.00338EPSS

Exploits0References1

Cvelist•added 6 days ago•26 views

CVE-2026-39558 WordPress Malmö theme <= 2.2 - Local File Inclusion vulnerability

Unauthenticated Local File Inclusion in Malmö = 2.2 versions...

8.1CVSS0.00338EPSS

Exploits0References1

CVE•added 6 days ago•7 views

CVE-2026-39558

CVE-2026-39558 is an unauthenticated Local File Inclusion vulnerability affecting WordPress Malmö theme

8.1CVSS5.2AI score0.00338EPSS

Exploits0References1

Cvelist•added 6 days ago•24 views

CVE-2026-39545 WordPress Zermatt theme <= 1.6.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Zermatt = 1.6.1 versions...

8.1CVSS0.00395EPSS

Exploits0References1

CVE•added 6 days ago•8 views

CVE-2026-39545

The CVE-2026-39545 entry affects the WordPress Zermatt theme (versions <= 1.6.1) and describes an unauthenticated PHP Object Injection vulnerability in Zermatt

8.1CVSS5.3AI score0.00395EPSS

Exploits0References1

CVE•added 6 days ago•9 views

CVE-2026-22343

CVE-2026-22343 describes an which affects the WordPress Dating Theme (DA10) up to version 11.2.0, with an Unauthenticated Broken Access Control vulnerability. The connected records confirm an unauthenticated path to perform actions that should require authorization, indicating potential impact on...

8.6CVSS5.2AI score0.00261EPSS

Exploits0References1

Cvelist•added 6 days ago•26 views

CVE-2026-22343 WordPress WordPress Dating Theme theme <= 11.2.0 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in WordPress Dating Theme = 11.2.0 versions...

8.6CVSS0.00261EPSS

Exploits0References1

CVE•added 6 days ago•8 views

CVE-2026-22342

CVE-2026-22342 affects WordPress Dating Theme (WordPress) versions

8.8CVSS5.2AI score0.00184EPSS

Exploits0References1

Cvelist•added 6 days ago•26 views

CVE-2026-22342 WordPress WordPress Dating Theme theme <= 11.2.0 - Cross Site Request Forgery (CSRF) to Account Takeover vulnerability

Unauthenticated Cross Site Request Forgery CSRF in WordPress Dating Theme = 11.2.0 versions...

8.8CVSS0.00184EPSS

Exploits0References1

CVE•added 6 days ago•8 views

CVE-2026-22340

CVE-2026-22340: Unauthenticated SQL Injection in WordPress WPJobster theme

9.3CVSS5.7AI score0.00372EPSS

Exploits0References1

Cvelist•added 6 days ago•27 views

CVE-2026-22340 WordPress WPJobster theme <= 6.3.5 - SQL Injection vulnerability

Unauthenticated SQL Injection in WPJobster = 6.3.5 versions...

9.3CVSS0.00372EPSS

Exploits0References1

Cvelist•added 6 days ago•28 views

CVE-2026-22339 WordPress WPJobster theme <= 6.3.5 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in WPJobster = 6.3.5 versions...

7.1CVSS0.0023EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by