CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

264056 matches found

CNNVD•added 2026/06/04 12:0 a.m.•6 views

WordPress plugin eMember 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

5.3CVSS5.5AI score0.00192EPSS

Exploits0References1

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46358

Unauthenticated Local File Inclusion in Top Dog = 1.0.5 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

VulnCheck KEV•added 2026/06/04 12:0 a.m.•12 views

VulnCheck KEV: CVE-2026-5073

The ARMember Premium plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of the 'armdirectorypagingaction' AJAX action in all versions up to, and including, 7.3.1. This is due to insufficient escaping on the user-supplied 'order' and 'orderby' parameters and the lack of...

7.5CVSS5.7AI score0.01383EPSS

In wildExploits1References2

Positive Technologies•added 2026/06/04 12:0 a.m.•14 views

PT-2026-46377

Unauthenticated Local File Inclusion in Etude = 1.6 versions...

8.1CVSS5.2AI score0.00348EPSS

Exploits0References2

Positive Technologies•added 2026/06/04 12:0 a.m.•14 views

PT-2026-46213

Name of the Vulnerable Software and Affected Versions Soliloquy Lite version 2.5.6 Description A persistent cross-site scripting issue allows authenticated attackers to inject malicious scripts by inserting script tags into the post title field. This is achieved by submitting POST requests to the...

5.4CVSS4.8AI score0.00171EPSS

Exploits0References7

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46328

Unauthenticated PHP Object Injection in Reisen = 1.4.1 versions...

9.8CVSS5.3AI score0.00386EPSS

Exploits0References2

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46324

Unauthenticated Local File Inclusion in Rosaleen = 2.8 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46340

Unauthenticated Local File Inclusion in Especio = 1.0 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46356

Unauthenticated Local File Inclusion in Putter = 1.17 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46370

Unauthenticated Local File Inclusion in Gunslinger = 1.7 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References2

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46351

Unauthenticated Local File Inclusion in Abelle = 1.22 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46326

Unauthenticated Local File Inclusion in Raider Spirit = 1.1.2 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46355

Unauthenticated Local File Inclusion in Dom = 1.24 versions...

8.1CVSS5.2AI score0.00348EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46348

Subscriber Privilege Escalation in Genemy = 1.6.6 versions...

8.8CVSS5.2AI score0.00389EPSS

Exploits0References2

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46334

Unauthenticated Local File Inclusion in Ingenioso = 1.14.0 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References2

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46346

Unauthenticated Local File Inclusion in Wanium = 1.9.8 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46366

Unauthenticated Local File Inclusion in Grecko = 5.17 versions...

8.1CVSS5.2AI score0.00435EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46365

Unauthenticated Local File Inclusion in Snowy = 1.13 versions...

8.1CVSS5.2AI score0.00348EPSS

Exploits0References2

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46341

Unauthenticated Local File Inclusion in Food Drop = 1.3 versions...

8.1CVSS5.2AI score0.00348EPSS

Exploits0References3

Positive Technologies•added 2026/06/04 12:0 a.m.•13 views

PT-2026-46215

WordPress Plugin Google Review Slider 6.1 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'tid' parameter. Attackers can send GET requests to the admin interface with malicious 'tid'...

8.8CVSS5.9AI score0.00262EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by