Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

263659 matches found

CVE
CVEadded 2026/06/02 10:41 a.m.17 views

CVE-2026-42670

CVE-2026-42670 concerns the WordPress plugin for Five Star Restaurant Reservations (versions

7.5CVSS5.8AI score0.00252EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:41 a.m.36 views

CVE-2026-42670 WordPress Five Star Restaurant Reservations plugin <= 2.7.14 - Payment Bypass vulnerability

Missing Authorization vulnerability in Etoile Web Design Incorporated Five Star Restaurant Reservations allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Five Star Restaurant Reservations: from n/a through 2.7.14...

0.00252EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 10:41 a.m.10 views

CVE-2026-42670 WordPress Five Star Restaurant Reservations plugin <= 2.7.14 - Payment Bypass vulnerability

Missing Authorization vulnerability in Etoile Web Design Incorporated Five Star Restaurant Reservations allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Five Star Restaurant Reservations: from n/a through 2.7.14...

5.8AI score0.00252EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:40 a.m.39 views

CVE-2026-42669 WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS0.00202EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 10:40 a.m.9 views

CVE-2026-42669 WordPress EventPrime plugin <= 4.3.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 10:40 a.m.16 views

CVE-2026-42669

CVE-2026-42669 affects WordPress EventPrime plugin up to version 4.3.2.0, with a Missing Authorization/Broken Access Control vulnerability stemming from incorrectly configured access control security levels. CVSS v3.1 base score 7.5 (HIGH), impact to integrity is high while confidentiality/availa...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 10:27 a.m.9 views

CVE-2025-58705 WordPress Crafti theme <= 1.12 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Crafti allows PHP Local File Inclusion. This issue affects Crafti: from n/a through 1.12...

8.1CVSS5.8AI score0.00415EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:27 a.m.48 views

CVE-2025-58705 WordPress Crafti theme <= 1.12 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Crafti allows PHP Local File Inclusion. This issue affects Crafti: from n/a through 1.12...

8.1CVSS0.00415EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 10:27 a.m.17 views

CVE-2025-58705

The CVE pertains to the WordPress Crafti theme (

8.1CVSS5.8AI score0.00415EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 10:24 a.m.34 views

CVE-2025-58024 WordPress Accordion FAQ Plugin <= 2.2.1 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in UnboundStudio Accordion FAQ allows PHP Local File Inclusion. This issue affects Accordion FAQ: from n/a through 2.2.1...

7.5CVSS0.003EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 10:24 a.m.8 views

CVE-2025-58024 WordPress Accordion FAQ Plugin <= 2.2.1 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in UnboundStudio Accordion FAQ allows PHP Local File Inclusion. This issue affects Accordion FAQ: from n/a through 2.2.1...

7.5CVSS5.8AI score0.003EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 10:24 a.m.9 views

CVE-2025-58024

CVE-2025-58024 affects the WordPress pluginPressapps Accordion FAQ (= 2.2.1) or official patch guidance when available.

7.5CVSS5.8AI score0.003EPSS
Exploits0References1
NVD
NVDadded 2026/06/02 10:16 a.m.10 views

CVE-2026-5191

The Tiled Gallery Carousel Without JetPack plugin for WordPress is vulnerable to stored cross-site scripting via the 'data-image-title' parameter in all versions up to, and including, 3.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attacker...

5.4CVSS0.00134EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/06/02 9:53 a.m.36 views

CVE-2025-53440 WordPress Confidant theme <= 1.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Confidant allows PHP Local File Inclusion. This issue affects Confidant: from n/a through 1.4...

8.1CVSS0.00415EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 9:53 a.m.10 views

CVE-2025-53440 WordPress Confidant theme <= 1.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Confidant allows PHP Local File Inclusion. This issue affects Confidant: from n/a through 1.4...

8.1CVSS5.8AI score0.00415EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 9:53 a.m.19 views

CVE-2025-53440

CVE-2025-53440 describes a Local File Inclusion in the WordPress Confidant theme (versions &lt;= 1.4) due to improper control of the filename for include/require in PHP. Affected component: Confidant WordPress theme. Root cause: PHP Local File Inclusion vulnerability enabling access to local file...

8.1CVSS5.8AI score0.00415EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/06/02 9:52 a.m.12 views

CVE-2025-53346 WordPress Thim Core Plugin <= 2.3.3 - Broken Access Control Vulnerability

Missing Authorization vulnerability in ThimPress Thim Core allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Thim Core: from n/a through 2.3.3...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 9:52 a.m.43 views

CVE-2025-53346 WordPress Thim Core Plugin <= 2.3.3 - Broken Access Control Vulnerability

Missing Authorization vulnerability in ThimPress Thim Core allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Thim Core: from n/a through 2.3.3...

4.3CVSS0.00152EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 9:52 a.m.15 views

CVE-2025-53346

CVE-2025-53346 : WordPress Thim Core plugin

4.3CVSS5.8AI score0.00152EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 9:47 a.m.39 views

CVE-2025-53345 WordPress Thim Core plugin <= 2.3.3 - Arbitrary Plugin Installation vulnerability

Missing Authorization vulnerability leading to code execution after installing malicious vulnerable plugin in ThimPress Thim Core. This issue affects Thim Core: from n/a through 2.3.3...

8.8CVSS0.00302EPSS
Exploits0References1
Rows per page
Query Builder