Lucene search
K

368678 matches found

CVE
CVE
added 4 days ago9 views

CVE-2026-57361

The CVE-2026-57361 entry affects the WordPress Survey Maker plugin ≤ 5.2.2.5, describing an unauthenticated Cross-Site Scripting (XSS) vulnerability. The provided documents specify the vulnerable software and vulnerability type, but do not include technical details about the root cause, impact sp...

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago9 views

CVE-2026-57360

CVE-2026-57360 affects the WordPress plugin eCommerce Product Catalog (versions ≤ 3.5.4). The vulnerability is an Unauthenticated Cross Site Scripting (XSS) issue. The connected documents provide the affected product and vulnerability type, with no exploit details or remediation/version fix infor...

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago5 views

CVE-2026-57359

CVE-2026-57359 concerns the WordPress plugin ReviewX (versions

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago7 views

CVE-2026-57358

CVE-2026-57358 affects the WordPress plugin Customize My Account for WooCommerce

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago5 views

CVE-2026-57357

CVE-2026-57357 affects the WordPress plugin “Search Atlas SEO” (versions

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago6 views

CVE-2026-57356

CVE-2026-57356 is an unauthenticated Cross Site Scripting (XSS) vulnerability affecting the WordPress MC Woocommerce Wishlist plugin version ≤ 1.9.19. The issue, identified in the CVE record, does not specify exploitation status or a confirmed fix within the provided documents. The CVSS base scor...

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago7 views

CVE-2026-57355

The WordPress Classified Listing plugin ≤ 5.4.2 has a Broken Access Control vulnerability. Affected software: Classified Listing plugin for WordPress (versions ≤ 5.4.2). Root cause: insufficient access checks. Impact: according to CVSS 3.1 metrics (AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N) with a base...

6.5CVSS5.8AI score0.00299EPSS
Exploits0References1
CVE
CVE
added 4 days ago9 views

CVE-2026-57354

The CVE-2026-57354 entry describes a Subscriber Cross Site Scripting (XSS) vulnerability in the WordPress JetReviews plugin limited to versions

6.5CVSS5.8AI score0.00224EPSS
Exploits0References1
CVE
CVE
added 4 days ago10 views

CVE-2026-57353

The CVE concerns WordPress Link Whisper Premium plugin <= 2.9.0 with a Broken Access Control issue. The accompanying CVSS data (Patchstack, v3.1) indicates an external attack over network, with low privileges and no user interaction, potentially affecting integrity (I: High) while confidential...

6.5CVSS5.8AI score0.00299EPSS
Exploits0References1
CVE
CVE
added 4 days ago9 views

CVE-2026-57352

CVE-2026-57352 concerns the WordPress plugin ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce (

4.8CVSS5.8AI score0.0021EPSS
Exploits0References1
CVE
CVE
added 4 days ago8 views

CVE-2026-57351

CVE-2026-57351 affects the WordPress plugin HandL UTM Grabber up to version 2.9.2, with an unauthenticated XSS vulnerability. The connected documents provide the vulnerability type and affected software but do not supply root cause specifics, exploit details, or a remediation. CVSS data (3.1) fro...

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago8 views

CVE-2026-57350

WP Debugging plugin for WordPress with versions ≤2.12.2 is affected by an unauthenticated Cross Site Scripting (XSS) vulnerability. The CVE entry specifies the vulnerable component as the WP Debugging plugin and lists CVSS v3.1 base score 7.1 (High) with Network attack vector, no privileges requi...

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago8 views

CVE-2026-57348

CVE-2026-57348 affects WordPress plugin Paid Member Subscriptions (versions <= 3.0.4). An unauthenticated server-side request forgery (SSRF) vulnerability exists in this plugin, enabling an attacker to induce the server to fetch arbitrary resources. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:N/S:C...

7.2CVSS5.8AI score0.00203EPSS
Exploits0References1
CVE
CVE
added 4 days ago10 views

CVE-2026-57349

CVE-2026-57349 affects the WordPress plugin WPeMatico RSS Feed Fetcher (versions

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago9 views

CVE-2026-57347

CVE-2026-57347 affects the WordPress plugin Hotel Booking Lite

6.5CVSS5.8AI score0.00371EPSS
Exploits0References1
CVE
CVE
added 4 days ago8 views

CVE-2026-57345

The CVE-2026-57345 entry concerns WordPress Internal Links Manager plugin versions <= 3.0.3 and describes an Unauthenticated Cross Site Scripting (XSS) vulnerability. The connected Patchstack reference confirms an XSS flaw in WordPress Internal Links Manager

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago7 views

CVE-2026-57344

Summary: Unauthenticated Cross Site Scripting (XSS) vulnerability in the WordPress Classified Listing plugin (versions <= 5.4.2). Affected product: WordPress Classified Listing plugin.Versions:

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago9 views

CVE-2026-57343

CVE-2026-57343 describes an unauthenticated Cross Site Scripting (XSS) vulnerability in the WordPress Real Estate 7 theme, affected

7.1CVSS5.8AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 4 days ago10 views

CVE-2026-57342

The CVE-2026-57342 entry concerns the WordPress ShortPixel Adaptive Images plugin, affected versions are

6.5CVSS5.8AI score0.00224EPSS
Exploits0References1
CVE
CVE
added 4 days ago10 views

CVE-2026-49779

CVE-2026-49779 concerns the WordPress plugin Tax Exempt for WooCommerce (versions

6.5CVSS5.8AI score0.00343EPSS
Exploits0References1
Rows per page
Query Builder