Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

263658 matches found

NVD
NVDadded 2026/06/02 12:16 p.m.12 views

CVE-2026-42685

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ahmad WP Job Portal allows Reflected XSS. This issue affects WP Job Portal: from n/a through 2.5.1...

7.1CVSS0.00146EPSS
Exploits0References1
NVD
NVDadded 2026/06/02 12:16 p.m.12 views

CVE-2026-42684

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ahmad WP Job Portal allows Blind SQL Injection. This issue affects WP Job Portal: from n/a through 2.5.1...

9.3CVSS0.00299EPSS
Exploits0References1
Patchstack
Patchstackadded 2026/06/02 11:0 a.m.11 views

WordPress EmergencyWP – Dead Man's switch & legacy deliverance plugin <= 1.4.2 - Cross-Site Request Forgery to Plugin Settings Update vulnerability

Cross-Site Request Forgery to Plugin Settings Update vulnerability discovered by swat in WordPress Plugin EmergencyWP – Dead Man's switch & legacy deliverance versions = 1.4.2...

4.3CVSS5.8AI score0.00128EPSS
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2026/06/02 10:57 a.m.8 views

WordPress Passeum Ticketing plugin <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by KEVIN LEE crattack - OPCIA in WordPress Plugin Passeum Ticketing versions = 1.0...

4.4CVSS5.8AI score0.00208EPSS
Exploits0References1Affected Software1
GithubExploit
GithubExploitadded 2026/06/02 10:53 a.m.144 views

Exploit for CVE-2026-8206

CVE-2026-8206 - Kirki WordPress Plugin Mass Exploit !Python...

9.8CVSS6AI score0.0126EPSS
Exploits4
Vulnrichment
Vulnrichmentadded 2026/06/02 10:46 a.m.8 views

CVE-2026-39551 WordPress Töbel theme <= 1.8.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1...

8.1CVSS5.8AI score0.00308EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 10:46 a.m.15 views

CVE-2026-39551

The CVE-2026-39551 entry concerns the WordPress Töbel theme (versions &lt;= 1.8.1) with a PHP Object Injection /deserialization vulnerability in Töbel. Affected component: Töbel theme; root cause: deserialization of untrusted data enabling object injection. Impact metrics from Patchstack indicate...

8.1CVSS5.8AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:46 a.m.36 views

CVE-2026-39551 WordPress Töbel theme <= 1.8.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Elated-Themes Töbel allows Object Injection. This issue affects Töbel: from n/a through 1.8.1...

8.1CVSS0.00308EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 10:44 a.m.13 views

CVE-2026-39550

CVE-2026-39550 affects the WordPress Aperitif theme (versions up to 1.6). The issue is a PHP Object Injection caused by deserialization of untrusted data in Aperitif, enabling exploitation via a network vector with no user interaction and no privileges required. The CVSSv3.1 base score is 8.1 (HI...

8.1CVSS5.8AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:44 a.m.33 views

CVE-2026-39550 WordPress Aperitif theme <= 1.6 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

8.1CVSS0.00308EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 10:44 a.m.8 views

CVE-2026-39550 WordPress Aperitif theme <= 1.6 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Elated-Themes Aperitif allows Object Injection. This issue affects Aperitif: from n/a through 1.6...

8.1CVSS5.8AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:43 a.m.34 views

CVE-2026-42685 WordPress WP Job Portal plugin <= 2.5.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ahmad WP Job Portal allows Reflected XSS. This issue affects WP Job Portal: from n/a through 2.5.1...

7.1CVSS0.00146EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 10:43 a.m.10 views

CVE-2026-42685 WordPress WP Job Portal plugin <= 2.5.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ahmad WP Job Portal allows Reflected XSS. This issue affects WP Job Portal: from n/a through 2.5.1...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/02 10:43 a.m.11 views

CVE-2026-42685

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ahmad WP Job Portal allows Reflected XSS. This issue affects WP Job Portal: from n/a through 2.5.1...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References2
CVE
CVEadded 2026/06/02 10:43 a.m.20 views

CVE-2026-42685

The CVE-2026-42685 entry concerns the WordPress plugin WP Job Portal (versions up to 2.5.1). The issue is a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper neutralization of input during page generation. Affected product: WP Job Portal. Root cause: insufficient input handlin...

7.1CVSS5.8AI score0.00146EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 10:42 a.m.17 views

CVE-2026-42684

CVE-2026-42684 affects WordPress WP Job Portal plugin versions up to 2.5.1. It is an SQL Injection due to improper neutralization of special elements in SQL commands, described as a blind SQL injection. According to the sources, the issue impacts the plugin in a network-inspired attack with high ...

9.3CVSS5.8AI score0.00299EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/02 10:42 a.m.10 views

EUVD-2026-33909

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ahmad WP Job Portal allows Blind SQL Injection. This issue affects WP Job Portal: from n/a through 2.5.1...

9.3CVSS5.8AI score0.00299EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 10:42 a.m.9 views

CVE-2026-42684 WordPress WP Job Portal plugin <= 2.5.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ahmad WP Job Portal allows Blind SQL Injection. This issue affects WP Job Portal: from n/a through 2.5.1...

9.3CVSS5.8AI score0.00299EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:42 a.m.35 views

CVE-2026-42684 WordPress WP Job Portal plugin <= 2.5.1 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ahmad WP Job Portal allows Blind SQL Injection. This issue affects WP Job Portal: from n/a through 2.5.1...

9.3CVSS0.00299EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 10:41 a.m.17 views

CVE-2026-42670

CVE-2026-42670 concerns the WordPress plugin for Five Star Restaurant Reservations (versions

7.5CVSS5.8AI score0.00252EPSS
Exploits0References1
Rows per page
Query Builder