Lucene search
+L

372045 matches found

cve
cve
added 2026/07/02 11:15 a.m.22 views

CVE-2026-57752

The CVE-2026-57752 entry covers a Contributor SQL Injection in the WordPress iNET Webkit plugin version 1.2.4. The vulnerability is described without attack details; CVSS 3.1 base score 8.5 (Network attack, Low complexity, Privileges Required: Low, User Interaction: None, Confidentiality Impact: ...

8.5CVSS5.8AI score0.0029EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.15 views

CVE-2026-57751

The CVE-2026-57751 entry concerns the WordPress plugin Heateor Social Login (versions

8.1CVSS5.8AI score0.00139EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.14 views

CVE-2026-57750

The CVE-2026-57750 entry concerns the WordPress plugin ez Form Calculator Premium (versions up to and including 2.14.1.2). The vulnerability is described as Unauthenticated Broken Access Control , implying that unauthenticated users can access or manipulate resources they should not be able to. T...

5.3CVSS5.8AI score0.00184EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.14 views

CVE-2026-57748

CVE-2026-57748 describes a Local File Inclusion vulnerability in the WordPress Shopify plugin for Shopify integrations, affecting versions up to 1.0.0. The available sources confirm the vulnerability class and affected product/version, but do not provide explicit root-cause details beyond LFI, ex...

7.5CVSS5.8AI score0.00284EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.15 views

CVE-2026-57749

CVE-2026-57749 is a Local File Inclusion vulnerability in the WordPress SportsPress Pro plugin, affecting versions up to and including 2.7.29. The issue is documented across multiple feeds (NVD, CVE List, CIRCL, AttackersKB, EUVD, etc.). The reported CVSS v3.1 metrics indicate a high overall impa...

7.5CVSS5.8AI score0.00278EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.19 views

CVE-2026-57747

CVE-2026-57747 is an unauthenticated CSRF vulnerability in the WordPress Booked plugin

6.5CVSS5.8AI score0.00124EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.15 views

CVE-2026-57746

CVE-2026-57746 concerns the WordPress Booked plugin (versions up to and including 3.0.0) where a Broken Access Control vulnerability is described. The Initial document notes only the affected software and version range, with the impact stated as access control issues; no root cause, affected file...

7.1CVSS5.8AI score0.00235EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.24 views

CVE-2026-57731

Technical details for CVE-2026-57731 are not publicly available in the provided documents. Monitor for updates. Current records indicate a Broken Access Control issue in Flatsome

6.5CVSS5.8AI score0.0021EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.21 views

CVE-2026-57730

CVE-2026-57730 concerns the WordPress Flatsome theme (

4.3CVSS5.8AI score0.00222EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.21 views

CVE-2026-57690

The CVE-2026-57690 entry documents an unauthenticated Cross Site Request Forgery (CSRF) in the WordPress Werkstatt theme versions ≤ 4.7.2. The vulnerability affects the Werkstatt theme (WordPress plugin/theme) and is described as CSRF without details on exploit vectors beyond unauthenticated acce...

4.3CVSS5.8AI score0.00104EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.15 views

CVE-2026-57689

The CVE-2026-57689 entry concerns the WordPress Werkstatt theme (versions up to 4.7.2) with a Broken Access Control flaw. Affected component: Werkstatt WordPress theme; root cause: broken access control mechanisms in version <= 4.7.2. Impact: unauthorized access to restricted functionality, as...

4.3CVSS5.8AI score0.00222EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.12 views

CVE-2026-57688

The CVE concerns the WordPress POS Entegratör plugin (versions

8.2CVSS5.8AI score0.00242EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.19 views

CVE-2026-57687

CVE-2026-57687 concerns a SQL Injection vulnerability in the WordPress plugin Custom Field Template (versions

8.5CVSS5.8AI score0.0022EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.16 views

CVE-2026-57686

CVE-2026-57686 affects the WordPress WowAddons plugin, versions

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.18 views

CVE-2026-57685

CVE-2026-57685: A Broken Access Control vulnerability exists in WordPress Martfury - WooCommerce Marketplace Theme (versions

4.3CVSS5.8AI score0.00254EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.14 views

CVE-2026-57684

CVE-2026-57684 describes a Cross Site Scripting (XSS) vulnerability in WordPress TheFox theme (versions

6.5CVSS5.8AI score0.00171EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.16 views

CVE-2026-57683

The CVE-2026-57683 entry concerns the WordPress WP Fast Total Search plugin (versions

9.3CVSS5.8AI score0.00247EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.15 views

CVE-2026-57682

The CVE-2026-57682 entry affects the WordPress plugin “Simple Link Directory” version ≤ 15.0.5, with an unauthenticated Cross Site Scripting (XSS) vulnerability. The connected records confirm the vulnerability type (XSS) and affected version, but do not provide concrete root-cause details, exploi...

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.13 views

CVE-2026-57681

The CVE describes a Server Side Request Forgery (SSRF) vulnerability in the WordPress GeoDirectory plugin for WordPress, specifically version

6.4CVSS5.8AI score0.0023EPSS
Exploits0References1
cve
cve
added 2026/07/02 11:15 a.m.13 views

CVE-2026-57679

CVE-2026-57679 affects the WordPress GeekyBot plugin prior to or at version 1.2.5, with an unauthenticated SQL Injection vulnerability. The provided sources (NVD entries and PatchStack) confirm the flaw exists in GeekyBot

9.3CVSS5.8AI score0.00247EPSS
Exploits0References1
Rows per page
Query Builder