CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

263149 matches found

NVD•added 4 days ago•5 views

CVE-2026-39468

Contributor Arbitrary File Deletion in Meta Box – WordPress Custom Fields Framework = 5.11.1 versions...

6.8CVSS0.00355EPSS

Exploits0References1

NVD•added 4 days ago•5 views

CVE-2026-27089

Unauthenticated Bypass Vulnerability in WpTravelly = 2.1.7 versions...

7.5CVSS0.00267EPSS

Exploits0References1

Cvelist•added 4 days ago•24 views

CVE-2026-52703 WordPress FastDup plugin <= 2.7.2 - Path Traversal vulnerability

Unauthenticated Path Traversal in FastDup = 2.7.2 versions...

9.6CVSS0.0035EPSS

Exploits0References1

Vulnrichment•added 4 days ago•5 views

CVE-2026-52703 WordPress FastDup plugin <= 2.7.2 - Path Traversal vulnerability

Unauthenticated Path Traversal in FastDup = 2.7.2 versions...

9.6CVSS5.2AI score0.0035EPSS

Exploits0References1

CVE•added 4 days ago•11 views

CVE-2026-52703

The CVE-2026-52703 entry concerns WordPress plugin FastDup (versions ≤ 2.7.2) with an unauthenticated path traversal vulnerability. The issue arises in the FastDup code path that allows traversal of the file system without authentication, enabling access to restricted files. Connected sources con...

9.6CVSS5.2AI score0.0035EPSS

Exploits0References1

Cvelist•added 4 days ago•26 views

CVE-2026-52702 WordPress SEO Redirection plugin <= 9.17 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in SEO Redirection = 9.17 versions...

7.1CVSS0.00149EPSS

Exploits0References1

Vulnrichment•added 4 days ago•4 views

CVE-2026-52700 WordPress WCMultiShipping plugin <= 3.0.2 - SQL Injection vulnerability

Subscriber SQL Injection in WCMultiShipping = 3.0.2 versions...

8.5CVSS5.7AI score0.00349EPSS

Exploits0References1

Vulnrichment•added 4 days ago•6 views

CVE-2026-52702 WordPress SEO Redirection plugin <= 9.17 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in SEO Redirection = 9.17 versions...

7.1CVSS5.1AI score0.00149EPSS

Exploits0References1

Cvelist•added 4 days ago•26 views

CVE-2026-52700 WordPress WCMultiShipping plugin <= 3.0.2 - SQL Injection vulnerability

Subscriber SQL Injection in WCMultiShipping = 3.0.2 versions...

8.5CVSS0.00349EPSS

Exploits0References1

CVE•added 4 days ago•11 views

CVE-2026-52702

CVE-2026-52702 affects the WordPress plugin “SEO Redirection” (versions ≤ 9.17). The vulnerability is an unauthenticated Cross Site Scripting (XSS) flaw reported in multiple sources. The connected documents identify the affected product and version range and confirm an XSS impact but do not provi...

7.1CVSS5.1AI score0.00149EPSS

Exploits0References1

CVE•added 4 days ago•12 views

CVE-2026-52700

WordPress plugin WCMultiShipping (versions

8.5CVSS5.7AI score0.00349EPSS

Exploits0References1

Cvelist•added 4 days ago•27 views

CVE-2026-52699 WordPress VikRentCar plugin <= 1.4.5 - Insecure Direct Object References (IDOR) vulnerability

Unauthenticated Insecure Direct Object References IDOR in VikRentCar = 1.4.5 versions...

7.5CVSS0.00237EPSS

Exploits0References1

Vulnrichment•added 4 days ago•4 views

CVE-2026-52699 WordPress VikRentCar plugin <= 1.4.5 - Insecure Direct Object References (IDOR) vulnerability

Unauthenticated Insecure Direct Object References IDOR in VikRentCar = 1.4.5 versions...

7.5CVSS5.2AI score0.00237EPSS

Exploits0References1

CVE•added 4 days ago•12 views

CVE-2026-52699

Summary: CVE-2026-52699 affects the WordPress VikRentCar plugin, versions

7.5CVSS5.2AI score0.00237EPSS

Exploits0References1

Vulnrichment•added 4 days ago•3 views

CVE-2026-52697 WordPress Taskbuilder plugin <= 5.0.7 - SQL Injection vulnerability

Subscriber SQL Injection in Taskbuilder = 5.0.7 versions...

8.5CVSS5.7AI score0.00349EPSS

Exploits0References1

Cvelist•added 4 days ago•26 views

CVE-2026-52695 WordPress ABC Crypto Checkout plugin <= 1.8.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout = 1.8.2 versions...

7.5CVSS0.0025EPSS

Exploits0References1

Vulnrichment•added 4 days ago•3 views

CVE-2026-52695 WordPress ABC Crypto Checkout plugin <= 1.8.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout = 1.8.2 versions...

7.5CVSS5.2AI score0.0025EPSS

Exploits0References1

Cvelist•added 4 days ago•25 views

CVE-2026-52697 WordPress Taskbuilder plugin <= 5.0.7 - SQL Injection vulnerability

Subscriber SQL Injection in Taskbuilder = 5.0.7 versions...

8.5CVSS0.00349EPSS

Exploits0References1

CVE•added 4 days ago•11 views

CVE-2026-52697

CVE-2026-52697 affects the WordPress Taskbuilder plugin (versions <= 5.0.7). The vulnerability is an SQL Injection in the Taskbuilder component, with CVSSv3.1 metrics indicating a high-severity issue (8.5) that is network-exploitable, requires low privileges, and does not require user interact...

8.5CVSS5.7AI score0.00349EPSS

Exploits0References1

CVE•added 4 days ago•13 views

CVE-2026-52695

CVE-2026-52695 affects the WordPress plugin ABC Crypto Checkout (versions

7.5CVSS5.2AI score0.0025EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by