CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

581 matches found

CNNVD•added 2026/04/08 12:0 a.m.•3 views

WordPress plugin Masteriyo LMS – Online Course Builder for eLearning, LMS & Education 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be added to a...

5.3CVSS5.8AI score0.00027EPSS

Exploits0References6

NVD•added 2026/04/04 8:16 a.m.•2 views

CVE-2026-4896

The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.7.25 via multiple AJAX actions including wcfmmodifyorderstatus, deletewcfmarticle,...

8.1CVSS0.00017EPSS

Exploits0References3

CNNVD•added 2026/04/04 12:0 a.m.•3 views

WordPress plugin Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There ar...

7.1CVSS5.8AI score0.00013EPSS

Exploits0References2

RedhatCVE•added 2026/04/02 5:4 a.m.•5 views

CVE-2026-3831

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the entriesshortcode function in all versions up to, and including, 1.4.9. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.00045EPSS

Exploits0References1

Packet Storm News•added 2026/04/02 12:0 a.m.•7 views

WPProbe Plugin Enumeration Tool 0.11.4

A fast WordPress plugin and theme scanner that detects installed plugins via REST API enumeration and themes from HTML discovery, then maps them to known vulnerabilities. Over 5,000 plugins detectable without brute-force, thousands more with it...

5.9AI score

Exploits0

CVE•added 2026/04/01 1:24 a.m.•8 views

CVE-2026-3831

The CVE-2026-3831 entry concerns the Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress. A missing capability check in entries_shortcode() affects all versions up to 1.4.9, enabling authenticated users with Contributor-level access and above to access all form submissions ...

4.3CVSS5.9AI score0.00045EPSS

Exploits0References2

Positive Technologies•added 2026/04/01 12:0 a.m.•3 views

PT-2026-29441

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the entries shortcode function in all versions up to, and including, 1.4.9. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.00045EPSS

Exploits0References3

CNNVD•added 2026/03/25 12:0 a.m.•2 views

WordPress plugin Booking calendar, Appointment Booking System 安全漏洞

7.1CVSS5.6AI score0.00045EPSS

Exploits0References1

CNNVD•added 2026/03/25 12:0 a.m.•4 views

WordPress plugin Commerce Coinbase For WooCommerce 安全漏洞

7.5CVSS5.8AI score0.00047EPSS

Exploits0References1

CNNVD•added 2026/03/25 12:0 a.m.•2 views

WordPress plugin JS Archive List 安全漏洞