Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

137 matches found

Nuclei
Nucleiadded yesterday27 views

WordPress sitepress-multilingual-cms 3.6.3 - Cross-Site Scripting

WordPress plugin sitepress-multilingual-cms 3.6.3 is vulnerable to cross-site scripting in processforms via any localefilename parameter such as localefilenameen in an authenticated theme-localization.php request to wp-admin/admin.php. id: CVE-2018-18069 info: name: WordPress...

6.1CVSS6.2AI score0.14198EPSS
Exploits2References5
CVE
CVEadded 2026/05/15 7:46 a.m.6 views

CVE-2026-4683

The CVE concerns the Smartcat Translator for WPML plugin for WordPress. A missing capability check on the REST endpoint routeData allows unauthenticated modification of data in all versions up to and including 3.1.77. This enables attackers to overwrite the plugin’s Smartcat API credentials (acco...

6.5CVSS5.8AI score0.00076EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/01/09 9:29 a.m.3 views

CVE-2023-29431

Missing Authorization vulnerability in OntheGoSystems qTranslate X Cleanup and WPML Import allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects qTranslate X Cleanup and WPML Import: from n/a through 3.0.1...

4.3CVSS8.5AI score0.00125EPSS
Exploits0References1
CVE
CVEadded 2025/12/23 9:20 a.m.9 views

CVE-2025-12934

CVE-2025-12934 affects the Beaver Builder Page Builder for WordPress. Wordfence’s vulnerability detail describes a missing capability check in the duplicate_wpml_layout function that exists in Beaver Builder versions up to and including 2.9.4.1. This permits authenticated attackers with Subscribe...

8.1CVSS4.8AI score0.00041EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-3020

Malware in sbrugna...

8.8CVSS8.6AI score0.02264EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2015-9256

Malware in sbrugna...

6.1CVSS6.3AI score0.0019EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2015-2881

Malware in sbrugna...

7.5CVSS6.3AI score0.00431EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2015-2410

Malware in sbrugna...

4.3CVSS6.3AI score0.07838EPSS
Exploits1References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.8 views

EUVD-2018-9808

Malware in sbrugna...

6.1CVSS6.3AI score0.14198EPSS
Exploits2References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-20011

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00298EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-13295

Malicious code in bioql PyPI...

6.4CVSS7.2AI score0.00209EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-47993

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00124EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-33000

Malicious code in bioql PyPI...

4.3CVSS9.2AI score0.00125EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-41521

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00256EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-41045

Malicious code in bioql PyPI...

5.4CVSS5AI score0.00201EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-47992

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00156EPSS
Exploits0References1
NVD
NVDadded 2025/09/11 8:15 a.m.9 views

CVE-2025-9451

The Smartcat Translator for WPML plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 3.1.72 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This...

6.5CVSS0.00051EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/09/11 12:0 a.m.2 views

PT-2025-37143

The Smartcat Translator for WPML plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 3.1.69 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This...

6.5CVSS6.6AI score0.00051EPSS
Exploits0References4
OpenVAS
OpenVASadded 2025/07/28 12:0 a.m.10 views

WordPress WPML Multilingual CMS Plugin < 4.6.13 RCE Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpml:wpml"; if description...

9.9CVSS9.6AI score0.73911EPSS
Exploits3References1
RedhatCVE
RedhatCVEadded 2025/07/06 11:21 a.m.4 views

CVE-2025-49431

Missing Authorization vulnerability in Gnuget MF Plus WPML mf-plus-wpml allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MF Plus WPML: from n/a through = 1.1...

6.5CVSS5.9AI score0.00298EPSS
Exploits0References1
Rows per page
Query Builder