CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

83594 matches found

CVE•added 2 days ago•7 views

CVE-2026-56044

The CVE-2026-56044 entry concerns the WordPress Blog2Social plugin (versions up to and including 8.9.2) and describes an Unauthenticated Cross-Site Scripting (XSS) vulnerability in that plugin. The report identifies the affected product as the Blog2Social WordPress plugin and states the vulnerabi...

7.1CVSS5.8AI score0.0018EPSS

Exploits0References1

Cvelist•added 2 days ago•31 views

CVE-2026-56043 WordPress Customer Reviews for WooCommerce plugin <= 5.110.1 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Customer Reviews for WooCommerce = 5.110.1 versions...

7.1CVSS0.0018EPSS

Exploits0References1

Cvelist•added 2 days ago•31 views

CVE-2026-56039 WordPress Quick Interest Slider plugin <= 3.1.6 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Quick Interest Slider = 3.1.6 versions...

7.1CVSS0.0018EPSS

Exploits0References1

CVE•added 2 days ago•8 views

CVE-2026-56036

The CVE-2026-56036 entry describes an unauthenticated SQL injection affecting the WordPress plugin 결제 심플페이 (SimplePay) for versions <= 5.5.6. CVSSv3.1: 9.3 (CRITICAL), vectors: AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L. Impact is confidentiality high; integrity none; availability low. Affected softw...

9.3CVSS5.8AI score0.00236EPSS

Exploits0References1

CVE•added 2 days ago•7 views

CVE-2026-56038

The CVE-2026-56038 entry concerns the WordPress Frisbii Pay plugin, affected on versions ≤ 1.8.2. The connected documents identify a privilege-escalation issue titled “Contributor Privilege Escalation,” indicating an attacker with low access could elevate to contributor privileges. The root cause...

8.8CVSS5.8AI score0.00232EPSS

Exploits0References1

Cvelist•added 2 days ago•31 views

CVE-2026-56035 WordPress BitFire Security plugin <= 5.0.3 - Multiple Vulnerabilities vulnerability

Unauthenticated Multiple Vulnerabilities in BitFire Security = 5.0.3 versions...

8.6CVSS0.00275EPSS

Exploits0References1

CVE•added 2 days ago•7 views

CVE-2026-56035

Technical details about CVE-2026-56035 are not publicly provided in the supplied documents; only basic description and affected product/version are listed. Monitor for updates.

8.6CVSS5.8AI score0.00275EPSS

Exploits0References1

CVE•added 2 days ago•10 views

CVE-2026-56032

The CVE-2026-56032 entry concerns a PHP Object Injection vulnerability in the WordPress BuddyBoss Platform plugin, affecting versions up to 3.0.4. The root cause is described as Subscriber PHP Object Injection within BuddyBoss Platform <= 3.0.4. Documented in Patchstack and CVE records, the vu...

9.8CVSS5.8AI score0.00525EPSS

Exploits0References1

Cvelist•added 2 days ago•35 views

CVE-2026-56032 WordPress Buddyboss Platform plugin <= 3.0.4 - PHP Object Injection vulnerability

Subscriber PHP Object Injection in Buddyboss Platform = 3.0.4 versions...

9.8CVSS0.00525EPSS

Exploits0References1

Cvelist•added 2 days ago•31 views

CVE-2026-56031 WordPress Uncanny Automator plugin <= 7.3.1.2 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in Uncanny Automator = 7.3.1.2 versions...

8.1CVSS0.00317EPSS

Exploits0References1

CVE•added 2 days ago•11 views

CVE-2026-56031

The CVE-2026-56031 entry covers an Unauthenticated PHP Object Injection in the WordPress plugin Uncanny Automator , affecting versions

8.1CVSS5.8AI score0.00317EPSS

Exploits0References1

Cvelist•added 2 days ago•29 views

CVE-2026-56029 WordPress CorvusPay WooCommerce Payment Gateway plugin <= 2.7.4 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in CorvusPay WooCommerce Payment Gateway = 2.7.4 versions...

7.5CVSS0.00294EPSS

Exploits0References1

CVE•added 2 days ago•8 views

CVE-2026-56028

CVE-2026-56028 describes an unauthenticated privilege-escalation vulnerability in the WordPress plugin Easy Elements for Elementor – Addons & Website Templates (versions

9.8CVSS5.8AI score0.0036EPSS

Exploits0References1

CVE•added 2 days ago•11 views

CVE-2026-56027

This CVE pertains to the WordPress Booster for WooCommerce plugin. The affected component is Booster for WooCommerce

9.9CVSS5.8AI score0.00328EPSS

Exploits0References1

Cvelist•added 2 days ago•30 views

CVE-2026-56025 WordPress Paymob for WooCommerce plugin <= 4.1.2 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Paymob for WooCommerce = 4.1.2 versions...

7.5CVSS0.00238EPSS

Exploits0References1

CVE•added 2 days ago•7 views

CVE-2026-56010

CVE-2026-56010 affects the WordPress plugin Abandoned Cart Pro for WooCommerce (versions

8.8CVSS5.8AI score0.00378EPSS

Exploits0References1

Cvelist•added 2 days ago•30 views

CVE-2026-56010 WordPress Abandoned Cart Pro for WooCommerce plugin <= 10.4.0 - Privilege Escalation vulnerability

Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce = 10.4.0 versions...

8.8CVSS0.00378EPSS

Exploits0References1

CVE•added 2 days ago•9 views

CVE-2026-56008

CVE-2026-56008 affects WordPress Fusion Builder plugin versions

8.8CVSS5.8AI score0.00278EPSS

Exploits0References1

CVE•added 2 days ago•12 views

CVE-2026-54847

The CVE-2026-54847 entry concerns the WordPress plugin “Stylish Cost Calculator” (versions

7.5CVSS5.8AI score0.00278EPSS

Exploits0References1

Cvelist•added 2 days ago•32 views

CVE-2026-54846 WordPress Syncee Premium Dropshipping & Wholesale plugin <= 1.0.27 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Syncee Premium Dropshipping & Wholesale = 1.0.27 versions...

7.5CVSS0.00278EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by