Lucene search
+L
VulnrichmentRecent

163375 matches found

vulnrichment
vulnrichment
added 2026/06/15 8:19 p.m.8 views

CVE-2026-48881 WordPress TrueBooker plugin <= 1.1.9 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in TrueBooker = 1.1.9 versions...

9.1CVSS5.2AI score0.00278EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:19 p.m.7 views

CVE-2026-48880 WordPress WP Job Portal plugin <= 2.5.2 - Cross Site Scripting (XSS) vulnerability

Subscriber Cross Site Scripting XSS in WP Job Portal = 2.5.2 versions...

6.5CVSS5.1AI score0.00205EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:19 p.m.8 views

CVE-2026-48876 WordPress Stop Spammers plugin <= 2026.3 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Stop Spammers = 2026.3 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:19 p.m.8 views

CVE-2026-48878 WordPress Visual Link Preview plugin <= 2.4.1 - Sensitive Data Exposure vulnerability

Subscriber Sensitive Data Exposure in Visual Link Preview = 2.4.1 versions...

6.5CVSS5.2AI score0.00345EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48874 WordPress GamiPress plugin <= 7.8.7 - SQL Injection vulnerability

Subscriber SQL Injection in GamiPress = 7.8.7 versions...

8.5CVSS5.7AI score0.00332EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.14 views

CVE-2026-48872 WordPress EmbedPress plugin <= 4.5.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in EmbedPress = 4.5.2 versions...

7.5CVSS5.2AI score0.00278EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48873 WordPress Montonio for WooCommerce plugin <= 10.1.2 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Montonio for WooCommerce = 10.1.2 versions...

7.5CVSS5.1AI score0.00238EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48871 WordPress MW WP Form plugin <= 5.1.3 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in MW WP Form = 5.1.3 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48868 WordPress Simple Shopping Cart plugin <= 5.2.9 - Insecure Direct Object References (IDOR) vulnerability

Unauthenticated Insecure Direct Object References IDOR in Simple Shopping Cart = 5.2.9 versions...

7.5CVSS5.2AI score0.00278EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48870 WordPress King Addons for Elementor plugin <= 51.1.62 - Cross Site Scripting (XSS) vulnerability

Subscriber Cross Site Scripting XSS in King Addons for Elementor = 51.1.62 versions...

6.5CVSS5.1AI score0.00205EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-48867 WordPress Quiz And Survey Master plugin <= 11.1.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Quiz And Survey Master = 11.1.2 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48838 WordPress Post SMTP plugin <= 3.6.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Post SMTP = 3.6.2 versions...

7.1CVSS5.1AI score0.00237EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48836 WordPress Easy Invoice plugin <= 2.1.19 - Remote Code Execution (RCE) vulnerability

Unauthenticated Remote Code Execution RCE in Easy Invoice = 2.1.19 versions...

10CVSS5.5AI score0.00572EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-48835 WordPress Contact Form by WPForms plugin <= 1.10.0.4 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Contact Form by WPForms = 1.10.0.4 versions...

7.5CVSS5.1AI score0.00305EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-45441 WordPress WpEvently plugin <= 5.3.3 - Other Vulnerability Type vulnerability

Unauthenticated Other Vulnerability Type in WpEvently = 5.3.3 versions...

7.5CVSS5.2AI score0.00259EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-45439 WordPress Realtyna Organic IDX plugin plugin <= 5.1.0 - SQL Injection vulnerability

Unauthenticated SQL Injection in Realtyna Organic IDX plugin = 5.1.0 versions...

9.3CVSS5.7AI score0.00291EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-45437 WordPress Product Filter Widget for Elementor plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Product Filter Widget for Elementor = 1.0.6 versions...

7.1CVSS5.2AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42752 WordPress Stripe Payments plugin <= 2.0.98 - Bypass Vulnerability vulnerability

Unauthenticated Bypass Vulnerability in Stripe Payments = 2.0.98 versions...

6.5CVSS5.2AI score0.00222EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.10 views

CVE-2026-42775 WordPress AutomatorWP plugin <= 5.7.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in AutomatorWP = 5.7.2 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42743 WordPress Masteriyo - LMS plugin <= 2.1.8 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in Masteriyo - LMS = 2.1.8 versions...

6.5CVSS5.2AI score0.00144EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-42688 WordPress Modula Image Gallery plugin <= 2.14.23 - Cross Site Scripting (XSS) vulnerability

Subscriber Cross Site Scripting XSS in Modula Image Gallery = 2.14.23 versions...

6.5CVSS5.1AI score0.00236EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.6 views

CVE-2026-42687 WordPress EventPrime plugin <= 4.3.2.1 - PHP Object Injection vulnerability

Unauthenticated PHP Object Injection in EventPrime = 4.3.2.1 versions...

8.1CVSS5.3AI score0.00317EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.6 views

CVE-2026-42668 WordPress Email Marketing for WooCommerce by Omnisend plugin <= 1.18.0 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in Email Marketing for WooCommerce by Omnisend = 1.18.0 versions...

7.5CVSS5.2AI score0.00427EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.6 views

CVE-2026-42686 WordPress EventPrime plugin <= 4.3.2.1 - Cross Site Scripting (XSS) vulnerability

Subscriber Cross Site Scripting XSS in EventPrime = 4.3.2.1 versions...

7.1CVSS5.1AI score0.00354EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42667 WordPress Bookly plugin <= 27.4 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in Bookly = 27.4 versions...

7.5CVSS5.2AI score0.00294EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.10 views

CVE-2026-42665 WordPress WP Data Access plugin <= 5.5.70 - SQL Injection vulnerability

Unauthenticated SQL Injection in WP Data Access = 5.5.70 versions...

9.3CVSS5.7AI score0.00283EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42666 WordPress Salon booking system plugin <= 10.30.25 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Salon booking system = 10.30.25 versions...

7.5CVSS5.1AI score0.00278EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-42664 WordPress AI Product Search for WooCommerce – Motive Commerce Search plugin <= 1.38.2 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in AI Product Search for WooCommerce Motive Commerce Search = 1.38.2 versions...

8.2CVSS5.1AI score0.00254EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42663 WordPress Simple Membership plugin <= 4.7.2 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Simple Membership = 4.7.2 versions...

6.5CVSS5.1AI score0.00161EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.10 views

CVE-2026-42662 WordPress Event Tickets plugin <= 5.27.5 - Bypass Vulnerability vulnerability

Unauthenticated Bypass Vulnerability in Event Tickets = 5.27.5 versions...

6.5CVSS5.2AI score0.00316EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42661 WordPress WP Customer Area plugin <= 8.3.4 - Path Traversal vulnerability

Custom role Path Traversal in WP Customer Area = 8.3.4 versions...

8.8CVSS5.2AI score0.00371EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-42660 WordPress Contest Gallery plugin <= 28.1.7 - Sensitive Data Exposure vulnerability

Subscriber Sensitive Data Exposure in Contest Gallery = 28.1.7 versions...

6.5CVSS5.2AI score0.00345EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.6 views

CVE-2026-42659 WordPress Advanced Form Integration plugin <= 1.126.12 - Broken Access Control vulnerability

Subscriber Broken Access Control in Advanced Form Integration = 1.126.12 versions...

6.5CVSS5.1AI score0.00271EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42658 WordPress Classified Listing plugin <= 5.3.8 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Classified Listing = 5.3.8 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-42657 WordPress Contest Gallery plugin <= 28.1.7 - Other Vulnerability Type vulnerability

Unauthenticated Other Vulnerability Type in Contest Gallery = 28.1.7 versions...

5.3CVSS5.2AI score0.00219EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42656 WordPress Contest Gallery plugin <= 28.1.6 - Cross Site Scripting (XSS) vulnerability

Subscriber Cross Site Scripting XSS in Contest Gallery = 28.1.6 versions...

6.5CVSS5.1AI score0.00205EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42655 WordPress Best Payments Plugin for WP plugin <= 4.6.19 - Payment Bypass vulnerability

Unauthenticated Bypass Vulnerability in Best Payments Plugin for WP = 4.6.19 versions...

5.9CVSS5.2AI score0.00249EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-42650 WordPress AutomatorWP plugin <= 5.6.7 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in AutomatorWP = 5.6.7 versions...

7.2CVSS5.1AI score0.00195EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42651 WordPress Classified Listing plugin <= 5.3.9 - Broken Access Control vulnerability

Subscriber Broken Access Control in Classified Listing = 5.3.9 versions...

6.3CVSS5.1AI score0.00242EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42649 WordPress Favicon Rotator plugin <= 1.2.11 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Favicon Rotator = 1.2.11 versions...

7.1CVSS5.1AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-42640 WordPress Classified Listing plugin <= 5.3.8 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Classified Listing = 5.3.8 versions...

6.5CVSS5.1AI score0.00188EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42639 WordPress GD Rating System plugin <= 3.6.2 - SQL Injection vulnerability

Unauthenticated SQL Injection in GD Rating System = 3.6.2 versions...

9.3CVSS5.7AI score0.00283EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42411 WordPress CloudSecure WP Security plugin <= 1.4.7 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in CloudSecure WP Security = 1.4.7 versions...

8.1CVSS5.2AI score0.00405EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42386 WordPress Order Delivery Date for WooCommerce plugin <= 4.5.1 - SQL Injection vulnerability

Unauthenticated SQL Injection in Order Delivery Date for WooCommerce = 4.5.1 versions...

9.3CVSS5.7AI score0.00283EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.8 views

CVE-2026-42384 WordPress Simply Schedule Appointments plugin < 1.6.11.2 - Sensitive Data Exposure vulnerability

Unauthenticated Sensitive Data Exposure in Simply Schedule Appointments 1.6.11.2 versions...

7.5CVSS5.2AI score0.00294EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.10 views

CVE-2026-42378 WordPress WP Full Stripe Free plugin <= 8.4.1 - Broken Authentication vulnerability

Subscriber Broken Authentication in WP Full Stripe Free = 8.4.1 versions...

6.5CVSS5.2AI score0.0039EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.7 views

CVE-2026-42381 WordPress Funnel Builder by FunnelKit plugin <= 3.15.0.1 - SQL Injection vulnerability

Unauthenticated SQL Injection in Funnel Builder by FunnelKit = 3.15.0.1 versions...

9.3CVSS5.7AI score0.00283EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.6 views

CVE-2026-41556 WordPress ProfilePress plugin <= 4.16.13 - Cross Site Scripting (XSS) vulnerability

Subscriber Cross Site Scripting XSS in ProfilePress = 4.16.13 versions...

6.5CVSS5.1AI score0.00205EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.9 views

CVE-2026-40799 WordPress Simple Cloudflare Turnstile plugin <= 1.38.0 - Broken Authentication vulnerability

Unauthenticated Broken Authentication in Simple Cloudflare Turnstile = 1.38.0 versions...

5.3CVSS5.2AI score0.00309EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/06/15 8:18 p.m.10 views

CVE-2026-40798 WordPress wpForo Forum plugin <= 3.0.4 - SQL Injection vulnerability

Unauthenticated SQL Injection in wpForo Forum = 3.0.4 versions...

9.3CVSS5.7AI score0.00283EPSS
Exploits0References1
Total number of security vulnerabilities163375