CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

263148 matches found

Vulnrichment•added 4 days ago•4 views

CVE-2026-40789 WordPress Amelia plugin <= 2.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in Amelia = 2.2 versions...

7.5CVSS5.2AI score0.00294EPSS

Exploits0References1

Vulnrichment•added 4 days ago•3 views

CVE-2026-40788 WordPress ChatBot plugin <= 7.9.7 - Broken Access Control vulnerability

Subscriber Broken Access Control in ChatBot = 7.9.7 versions...

7.1CVSS5.1AI score0.00307EPSS

Exploits0References1

CVE•added 4 days ago•5 views

CVE-2026-40788

CVE-2026-40788 affects WordPress ChatBot plugin versions

7.1CVSS5.1AI score0.00307EPSS

Exploits0References1

CVE•added 4 days ago•8 views

CVE-2026-40789

CVE-2026-40789 affects WordPress Amelia plugin (versions

7.5CVSS5.2AI score0.00294EPSS

Exploits0References1

Cvelist•added 4 days ago•23 views

CVE-2026-40788 WordPress ChatBot plugin <= 7.9.7 - Broken Access Control vulnerability

Subscriber Broken Access Control in ChatBot = 7.9.7 versions...

7.1CVSS0.00307EPSS

Exploits0References1

Vulnrichment•added 4 days ago•3 views

CVE-2026-40787 WordPress Quiz And Survey Master plugin <= 11.0.0 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Quiz And Survey Master = 11.0.0 versions...

7.1CVSS5.1AI score0.00175EPSS

Exploits0References1

Cvelist•added 4 days ago•22 views

CVE-2026-40787 WordPress Quiz And Survey Master plugin <= 11.0.0 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Quiz And Survey Master = 11.0.0 versions...

7.1CVSS0.00175EPSS

Exploits0References1

CVE•added 4 days ago•6 views

CVE-2026-40787

The vulnerability concerns the WordPress Quiz And Survey Master plugin (versions ≤ 11.0.0). It is an unauthenticated Cross Site Scripting (XSS) flaw identified in these releases. The connected sources confirm the affected product and the XSS impact but do not specify the exact root cause, vulnera...

7.1CVSS5.1AI score0.00175EPSS

Exploits0References1

Vulnrichment•added 4 days ago•4 views

CVE-2026-40782 WordPress WPAdverts plugin <= 2.3.0 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in WPAdverts = 2.3.0 versions...

6.5CVSS5.1AI score0.00242EPSS

Exploits0References1

Cvelist•added 4 days ago•23 views

CVE-2026-40785 WordPress AutomatorWP plugin <= 5.6.7 - Broken Authentication vulnerability

Subscriber Broken Authentication in AutomatorWP = 5.6.7 versions...

7.1CVSS0.00385EPSS

Exploits0References1

Cvelist•added 4 days ago•22 views

CVE-2026-40782 WordPress WPAdverts plugin <= 2.3.0 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in WPAdverts = 2.3.0 versions...

6.5CVSS0.00242EPSS

Exploits0References1

Vulnrichment•added 4 days ago•4 views

CVE-2026-40785 WordPress AutomatorWP plugin <= 5.6.7 - Broken Authentication vulnerability

Subscriber Broken Authentication in AutomatorWP = 5.6.7 versions...

7.1CVSS5.2AI score0.00385EPSS

Exploits0References1

CVE•added 4 days ago•7 views

CVE-2026-40785

CVE-2026-40785 concerns WordPress AutomatorWP plugin

7.1CVSS5.2AI score0.00385EPSS

Exploits0References1

CVE•added 4 days ago•4 views

CVE-2026-40782

CVE-2026-40782 : Unauthenticated Broken Access Control in WordPress WPAdverts plugin (versions

6.5CVSS5.1AI score0.00242EPSS

Exploits0References1

Vulnrichment•added 4 days ago•3 views

CVE-2026-40781 WordPress ReviewX plugin <= 2.3.6 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in ReviewX = 2.3.6 versions...

7.5CVSS5.2AI score0.00294EPSS

Exploits0References1

CVE•added 4 days ago•11 views

CVE-2026-40781

CVE-2026-40781 affects the WordPress ReviewX plugin ≤ 2.3.6. Root cause: unauthenticated broken authentication vulnerability leading to high-severity impact (CVSSv3.1 base score 7.5; Network attack vector, no user interaction, no privileges required; integrity impact HIGH). Affected software is t...

7.5CVSS5.2AI score0.00294EPSS

Exploits0References1

Cvelist•added 4 days ago•23 views

CVE-2026-40781 WordPress ReviewX plugin <= 2.3.6 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in ReviewX = 2.3.6 versions...

7.5CVSS0.00294EPSS

Exploits0References1

Cvelist•added 4 days ago•23 views

CVE-2026-40779 WordPress Link Library plugin <= 7.8.8 - Arbitrary File Deletion vulnerability

Contributor Arbitrary File Deletion in Link Library = 7.8.8 versions...

7.7CVSS0.00327EPSS

Exploits0References1

CVE•added 4 days ago•7 views

CVE-2026-40779

CVE-2026-40779 affects the WordPress WordPress Link Library plugin, version

7.7CVSS5.2AI score0.00327EPSS

Exploits0References1

CVE•added 4 days ago•13 views

CVE-2026-40776

CVE-2026-40776 affects the WP Event Solution (Eventin) plugin up to version 4.1.8, where unauthenticated requests can trigger Broken Access Control. The root cause involves three permission checks that accept a wp_rest nonce as authentication, plus an IDOR-prone Order endpoint and an open seat-bo...

7.5CVSS5.1AI score0.00414EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by