CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

263183 matches found

NVD•added 4 days ago•5 views

CVE-2026-42655

Unauthenticated Bypass Vulnerability in Best Payments Plugin for WP = 4.6.19 versions...

5.9CVSS0.00249EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-42661

Custom role Path Traversal in WP Customer Area = 8.3.4 versions...

8.8CVSS0.00371EPSS

Exploits0References1

NVD•added 4 days ago•7 views

CVE-2026-42411

Unauthenticated Broken Authentication in CloudSecure WP Security = 1.4.7 versions...

8.1CVSS0.00405EPSS

Exploits0References1

NVD•added 4 days ago•5 views

CVE-2026-42378

Subscriber Broken Authentication in WP Full Stripe Free = 8.4.1 versions...

6.5CVSS0.0039EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-40798

Unauthenticated SQL Injection in wpForo Forum = 3.0.4 versions...

9.3CVSS0.00283EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-40790

Subscriber Sensitive Data Exposure in WP SMS = 7.2.1 versions...

6.5CVSS0.00326EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-40791

Unauthenticated Cross Site Scripting XSS in WP Time Slots Booking Form = 1.2.46 versions...

7.1CVSS0.0021EPSS

Exploits0References1

NVD•added 4 days ago•5 views

CVE-2026-40776

Unauthenticated Broken Access Control in WP Event SOlution = 4.1.8 versions...

7.5CVSS0.00414EPSS

Exploits2References1

NVD•added 4 days ago•5 views

CVE-2026-40773

Subscriber Broken Access Control in rtMedia for WordPress, BuddyPress and bbPress = 4.7.9 versions...

6.5CVSS0.00279EPSS

Exploits0References1

NVD•added 4 days ago•3 views

CVE-2026-39534

Unauthenticated Broken Access Control in WP Directory Kit = 1.5.0 versions...

7.5CVSS0.00306EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-39587

Unauthenticated Privilege Escalation in WP BASE Booking = 5.9.0 versions...

8.1CVSS0.00283EPSS

Exploits0References1

NVD•added 4 days ago•4 views

CVE-2026-39527

Subscriber Arbitrary File Upload in WpStream 4.11.2 versions...

5.4CVSS0.00291EPSS

Exploits0References1

NVD•added 4 days ago•3 views

CVE-2026-39511

Unauthenticated SQL Injection in WP Photo Album Plus = 9.1.08.001 versions...

9.3CVSS0.00295EPSS

Exploits0References1

NVD•added 4 days ago•5 views

CVE-2026-39451

Unauthenticated Cross Site Scripting XSS in WP Google Review Slider = 18.0 versions...

6.3CVSS0.00244EPSS

Exploits0References1

NVD•added 4 days ago•5 views

CVE-2026-39468

Contributor Arbitrary File Deletion in Meta Box – WordPress Custom Fields Framework = 5.11.1 versions...

6.8CVSS0.00355EPSS

Exploits0References1

NVD•added 4 days ago•5 views

CVE-2026-27089

Unauthenticated Bypass Vulnerability in WpTravelly = 2.1.7 versions...

7.5CVSS0.00267EPSS

Exploits0References1

Cvelist•added 4 days ago•24 views

CVE-2026-52703 WordPress FastDup plugin <= 2.7.2 - Path Traversal vulnerability

Unauthenticated Path Traversal in FastDup = 2.7.2 versions...

9.6CVSS0.0035EPSS

Exploits0References1

Vulnrichment•added 4 days ago•5 views

CVE-2026-52703 WordPress FastDup plugin <= 2.7.2 - Path Traversal vulnerability

Unauthenticated Path Traversal in FastDup = 2.7.2 versions...

9.6CVSS5.2AI score0.0035EPSS

Exploits0References1

CVE•added 4 days ago•11 views

CVE-2026-52703

The CVE-2026-52703 entry concerns WordPress plugin FastDup (versions ≤ 2.7.2) with an unauthenticated path traversal vulnerability. The issue arises in the FastDup code path that allows traversal of the file system without authentication, enabling access to restricted files. Connected sources con...

9.6CVSS5.2AI score0.0035EPSS

Exploits0References1

Cvelist•added 4 days ago•26 views

CVE-2026-52702 WordPress SEO Redirection plugin <= 9.17 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in SEO Redirection = 9.17 versions...

7.1CVSS0.00149EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by