CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/04/29 10:40 a.m.•1 views

CVE-2026-42648 WordPress Spectra plugin <= 2.19.22 - Broken Access Control vulnerability

4.3CVSS5.1AI score0.00032EPSS

Cvelist•added 2026/04/29 10:40 a.m.•26 views

CVE-2026-42648 WordPress Spectra plugin <= 2.19.22 - Broken Access Control vulnerability

4.3CVSS0.00032EPSS

RedhatCVE•added 2026/04/02 10:53 a.m.•1 views

CVE-2026-34889

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Brainstorm Force Ultimate Addons for WPBakery Page Builder allows DOM-Based XSS.This issue affects Ultimate Addons for WPBakery Page Builder: from n/a before 3.21.4...

EUVD•added 2026/04/01 9:31 a.m.•3 views

EUVD-2026-17845

NVD•added 2026/04/01 9:16 a.m.•0 views

CVE-2026-34889

6.5CVSS0.00013EPSS

ATTACKERKB•added 2026/04/01 8:51 a.m.•3 views

CVE-2026-34889

Vulnrichment•added 2026/04/01 8:51 a.m.•2 views

CVE-2026-34889 WordPress Ultimate Addons for WPBakery Page Builder plugin < 3.21.4 - Cross Site Scripting (XSS) vulnerability

Cvelist•added 2026/04/01 8:51 a.m.•27 views

CVE-2026-34889 WordPress Ultimate Addons for WPBakery Page Builder plugin < 3.21.4 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00013EPSS

CVE•added 2026/04/01 8:51 a.m.•4 views

CVE-2026-34889

The CVE concerns Brainstorm Force Ultimate Addons for WPBakery Page Builder. It is a DOM‑Based Cross‑Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation, affecting versions before 3.21.4. Impact is DOM‑XSS (user‑sensitive data exposure possible in...

Patchstack•added 2026/04/01 8:50 a.m.•4 views

WordPress Ultimate Addons for WPBakery Page Builder plugin < 3.21.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Bonds in WordPress Plugin Ultimate Addons for WPBakery Page Builder versions 3.21.4...

Exploits0Affected Software1

Positive Technologies•added 2026/04/01 12:0 a.m.•2 views

PT-2026-29500

RedhatCVE•added 2026/03/26 3:17 p.m.•1 views

CVE-2026-32460

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themefic Ultimate Addons for Contact Form 7 ultimate-addons-for-contact-form-7 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Addons for Contact...

6.5CVSS5.8AI score0.00045EPSS

Patchstack•added 2026/03/14 8:2 p.m.•2 views

WordPress Ultimate Addons for Contact Form 7 plugin <= 3.5.36 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Marc-André Beaulieu h3dg3h0g in WordPress Plugin Ultimate Addons for Contact Form 7 versions = 3.5.36...

6.5CVSS5.8AI score0.00045EPSS

Exploits0Affected Software1

EUVD•added 2026/03/13 9:31 p.m.•0 views

EUVD-2026-12019

5.8AI score0.00045EPSS

NVD•added 2026/03/13 7:55 p.m.•1 views

CVE-2026-32460

6.5CVSS0.00045EPSS

ATTACKERKB•added 2026/03/13 11:42 a.m.•1 views

CVE-2026-32460

5.8AI score0.00045EPSS

Vulnrichment•added 2026/03/13 11:42 a.m.•0 views

CVE-2026-32460 WordPress Ultimate Addons for Contact Form 7 plugin <= 3.5.36 - Cross Site Scripting (XSS) vulnerability

6.5CVSS5.8AI score0.00045EPSS

EUVD•added 2026/03/05 6:30 a.m.•3 views

EUVD-2026-9700

Missing Authorization vulnerability in BrainstormForce Ultimate Addons for WPBakery Page Builder ultimatevcaddons allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Addons for WPBakery Page Builder: from n/a through = 3.21.1...

6.5CVSS5.9AI score0.00039EPSS

NVD•added 2026/03/05 6:16 a.m.•2 views

CVE-2026-28038

6.5CVSS0.00039EPSS