CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19015 matches found

CVE•added 2026/04/08 8:30 a.m.•8 views

CVE-2026-39637

CVE-2026-39637 is associated with the WordPress Mogi theme (

5.3CVSS5.9AI score0.00228EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•23 views

CVE-2026-39637 WordPress Mogi theme <= 1.2.3 - Arbitrary Shortcode Execution vulnerability

Missing Authorization vulnerability in SpabRice Mogi mogi allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mogi: from n/a through = 1.2.3...

5.3CVSS0.00228EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•23 views

CVE-2026-39634 WordPress Grand Portfolio theme <= 3.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Portfolio grandportfolio allows Cross Site Request Forgery.This issue affects Grand Portfolio: from n/a through = 3.3...

5.4CVSS0.00104EPSS

Exploits0References1

ATTACKERKB•added 2026/04/08 8:30 a.m.•2 views

CVE-2026-39634

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Portfolio grandportfolio allows Cross Site Request Forgery.This issue affects Grand Portfolio: from n/a through = 3.3...

5.9AI score0.00104EPSS

Exploits0References2

Vulnrichment•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39635 WordPress Grand Magazine theme <= 3.5.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Magazine grandmagazine allows Cross Site Request Forgery.This issue affects Grand Magazine: from n/a through = 3.5.5...

5.4CVSS5.9AI score0.00098EPSS

Exploits0References1

CVE•added 2026/04/08 8:30 a.m.•8 views

CVE-2026-39634

CVE-2026-39634 : CSRF in the ThemeGoods Grand Portfolio (WordPress theme, grandportfolio) affects versions up to 3.3. The connected docs confirm a CSRF issue but do not provide the explicit root cause details, exploit scenarios, or a remediation path. The CVSS v3.1 base score is 5.4 (Medium). No ...

5.4CVSS5.9AI score0.00104EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•25 views

CVE-2026-39633 WordPress Grand Car Rental theme <= 3.6.9 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Car Rental grandcarrental allows Cross Site Request Forgery.This issue affects Grand Car Rental: from n/a through = 3.6.9...

6.5CVSS0.00095EPSS

Exploits0References1

Vulnrichment•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39634 WordPress Grand Portfolio theme <= 3.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Portfolio grandportfolio allows Cross Site Request Forgery.This issue affects Grand Portfolio: from n/a through = 3.3...

5.4CVSS5.8AI score0.00104EPSS

Exploits0References1

CVE•added 2026/04/08 8:30 a.m.•11 views

CVE-2026-39633

The CVE-2026-39633 entry concerns a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress ThemeGoods Grand Car Rental theme (grandcarrental) up to version 3.6.9. Public descriptions across NVD, Red Hat, CVE List, ENISA EUVD, and other feeds consistently indicate CSRF as the issue and i...

6.5CVSS5.9AI score0.00095EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•22 views

CVE-2026-39635 WordPress Grand Magazine theme <= 3.5.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Magazine grandmagazine allows Cross Site Request Forgery.This issue affects Grand Magazine: from n/a through = 3.5.5...

5.4CVSS0.00098EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•21 views

CVE-2026-39632 WordPress Grand Blog theme <= 3.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Blog grandblog allows Cross Site Request Forgery.This issue affects Grand Blog: from n/a through = 3.1...

6.5CVSS0.00123EPSS

Exploits0References1

Vulnrichment•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39629 WordPress Uminex theme <= 1.0.9 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes Uminex uminex allows Code Injection.This issue affects Uminex: from n/a through = 1.0.9...

5.8AI score0.00236EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•24 views

CVE-2026-39629 WordPress Uminex theme <= 1.0.9 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes Uminex uminex allows Code Injection.This issue affects Uminex: from n/a through = 1.0.9...

5.3CVSS0.00236EPSS

Exploits0References1

CVE•added 2026/04/08 8:30 a.m.•8 views

CVE-2026-39629

CVE-2026-39629 affects kutethemes Uminex WordPress theme versions up to and including 1.0.9. The issue is described as Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) that allows Code Injection via shortcode handling, leading to arbitrary shortcode execution. Concret...

5.3CVSS5.9AI score0.00236EPSS

Exploits0References1

CVE•added 2026/04/08 8:30 a.m.•11 views

CVE-2026-39632

The CVE-2026-39632 entry concerns the WordPress ThemeGoods Grand Blog (grandblog) theme, affected versions up to 3.1. The vulnerability is a Cross-Site Request Forgery (CSRF) in Grand Blog that allows unauthorized actions initiated by forged requests. The connected Red Hat and EU/NVD records conf...

6.5CVSS5.9AI score0.00123EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•20 views

CVE-2026-39627 WordPress Ashe theme <= 2.266 - Broken Access Control vulnerability

Missing Authorization vulnerability in wproyal Ashe ashe allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ashe: from n/a through = 2.266...

4.3CVSS0.00147EPSS

Exploits0References1

Cvelist•added 2026/04/08 8:30 a.m.•21 views

CVE-2026-39624 WordPress Biolife theme <= 3.2.3 - Arbitrary Shortcode Execution vulnerability

Missing Authorization vulnerability in kutethemes Biolife biolife allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Biolife: from n/a through = 3.2.3...

5.3CVSS0.0019EPSS

Exploits0References1

Vulnrichment•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39626 WordPress Armania theme <= 1.4.8 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in kutethemes Armania armania allows Code Injection.This issue affects Armania: from n/a through = 1.4.8...

5.8AI score0.00198EPSS

Exploits0References1

Vulnrichment•added 2026/04/08 8:30 a.m.•4 views

CVE-2026-39624 WordPress Biolife theme <= 3.2.3 - Arbitrary Shortcode Execution vulnerability

Missing Authorization vulnerability in kutethemes Biolife biolife allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Biolife: from n/a through = 3.2.3...

5.8AI score0.0019EPSS

Exploits0References1

CVE•added 2026/04/08 8:30 a.m.•9 views

CVE-2026-39626

CVE-2026-39626 concerns the WordPress kutethemes Armania theme (

5.3CVSS5.9AI score0.00198EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by