Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68985 | 7.5 (v3.1) | WordPress Aora theme <= 1.3.15 - Local File Inclusion … |
thembay |
Aora |
2025-12-30T10:47:49.767Z | 2026-04-28T16:14:33.567Z |
| cve-2025-68978 | 6.5 (v3.1) | WordPress DesignThemes Core plugin <= 1.6 - Cross Site… |
designthemes |
DesignThemes Core |
2025-12-30T10:47:48.485Z | 2026-04-28T16:14:33.548Z |
| cve-2025-68984 | 7.5 (v3.1) | WordPress Puca theme <= 2.6.39 - Local File Inclusion … |
thembay |
Puca |
2025-12-30T10:47:49.577Z | 2026-04-28T16:14:33.544Z |
| cve-2025-68979 | 5.3 (v3.1) | WordPress Google Calendar Events plugin <= 3.5.9 - Ins… |
SimpleCalendar |
Google Calendar Events |
2025-12-30T10:47:48.678Z | 2026-04-28T16:14:33.469Z |
| cve-2025-68980 | 5.3 (v3.1) | WordPress WeDesignTech Portfolio plugin <= 1.0.2 - Bro… |
designthemes |
WeDesignTech Portfolio |
2025-12-30T10:47:48.858Z | 2026-04-28T16:14:33.458Z |
| cve-2025-68974 | 6.6 (v3.1) | WordPress WordPress Social Login and Register plugin <… |
miniOrange |
WordPress Social Login and Register |
2025-12-30T10:47:47.632Z | 2026-04-28T16:14:33.450Z |
| cve-2025-68912 | 8.6 (v3.1) | WordPress HDForms plugin <= 1.6.1 - Arbitrary File Del… |
Harmonic Design |
HDForms |
2026-01-22T16:52:15.047Z | 2026-04-28T16:14:33.446Z |
| cve-2025-68982 | 5.3 (v3.1) | WordPress DesignThemes LMS Addon plugin <= 2.6 - Broke… |
designthemes |
DesignThemes LMS Addon |
2025-12-30T10:47:49.216Z | 2026-04-28T16:14:33.411Z |
| cve-2025-68975 | 4.3 (v3.1) | WordPress Eagle Booking plugin <= 1.3.4.3 - Insecure D… |
Eagle-Themes |
Eagle Booking |
2025-12-30T10:47:47.878Z | 2026-04-28T16:14:33.400Z |
| cve-2025-68976 | 5.4 (v3.1) | WordPress Eagle Booking plugin <= 1.3.4.3 - Settings C… |
Eagle-Themes |
Eagle Booking |
2025-12-30T10:47:48.092Z | 2026-04-28T16:14:33.395Z |
| cve-2025-68981 | 5.3 (v3.1) | WordPress HomeFix Elementor Portfolio plugin <= 1.0.1 … |
designthemes |
HomeFix Elementor Portfolio |
2025-12-30T10:47:49.035Z | 2026-04-28T16:14:33.390Z |
| cve-2025-68983 | 7.5 (v3.1) | WordPress Greenmart theme <= 4.2.11 - Local File Inclu… |
thembay |
Greenmart |
2025-12-30T10:47:49.392Z | 2026-04-28T16:14:33.386Z |
| cve-2025-68977 | 6.5 (v3.1) | WordPress DesignThemes Portfolio Addon plugin <= 1.5 -… |
designthemes |
DesignThemes Portfolio Addon |
2025-12-30T10:47:48.297Z | 2026-04-28T16:14:33.385Z |
| cve-2025-68911 | 6.5 (v3.1) | WordPress Solace theme <= 2.1.16 - Broken Access Contr… |
solacewp |
Solace |
2026-01-22T16:52:14.813Z | 2026-04-28T16:14:33.356Z |
| cve-2025-68908 | 8.1 (v3.1) | WordPress Barberry theme <= 2.9.9.87 - Local File Incl… |
temash |
Barberry |
2026-01-22T16:52:14.157Z | 2026-04-28T16:14:33.311Z |
| cve-2025-68907 | 7.5 (v3.1) | WordPress Hostme v2 theme <= 7.0 - Arbitrary File Dele… |
AivahThemes |
Hostme v2 |
2026-01-22T16:52:13.949Z | 2026-04-28T16:14:33.277Z |
| cve-2025-68890 | 7.1 (v3.1) | WordPress e-shops plugin <= 1.0.4 - Reflected Cross Si… |
hands01 |
e-shops |
2026-01-08T09:17:54.055Z | 2026-04-28T16:14:32.752Z |
| cve-2025-68892 | 7.1 (v3.1) | WordPress Scroll rss excerpt plugin <= 5.0 - Reflected… |
gopiplus@hotmail.com |
Scroll rss excerpt |
2026-01-08T09:17:54.424Z | 2026-04-28T16:14:32.721Z |
| cve-2025-68885 | 7.1 (v3.1) | WordPress Custom Post Status plugin <= 1.1.0 - Cross S… |
page-carbajal |
Custom Post Status |
2025-12-31T05:34:27.042Z | 2026-04-28T16:14:32.692Z |
| cve-2025-68897 | 9.9 (v3.1) | WordPress IF AS Shortcode plugin <= 1.2 - Remote Code … |
Mohammad I. Okfie |
IF AS Shortcode |
2025-12-29T15:55:13.564Z | 2026-04-28T16:14:32.691Z |
| cve-2025-68893 | 4.9 (v3.1) | WordPress WordPress Image shrinker plugin <= 1.1.0 - S… |
HETWORKS |
WordPress Image shrinker |
2025-12-29T15:56:47.504Z | 2026-04-28T16:14:32.690Z |
| cve-2025-68902 | 7.5 (v3.1) | WordPress Anona theme <= 8.0 - Arbitrary File Download… |
AivahThemes |
Anona |
2026-01-22T16:52:12.937Z | 2026-04-28T16:14:32.689Z |
| cve-2025-68901 | 8.6 (v3.1) | WordPress Anona theme <= 8.0 - Arbitrary File Deletion… |
AivahThemes |
Anona |
2026-01-22T16:52:12.738Z | 2026-04-28T16:14:32.370Z |
| cve-2025-68882 | 7.5 (v3.1) | WordPress Scalenut plugin <= 1.1.5 - Broken Access Con… |
Scalenut |
Scalenut |
2026-01-22T16:52:11.129Z | 2026-04-28T16:14:32.333Z |
| cve-2025-68878 | 7.1 (v3.1) | WordPress Advanced Custom CSS plugin <= 1.1.0 - Reflec… |
prasadkirpekar |
Advanced Custom CSS |
2025-12-29T16:00:20.652Z | 2026-04-28T16:14:32.167Z |
| cve-2025-68879 | 7.1 (v3.1) | WordPress Content Grid Slider plugin <= 1.5 - Reflecte… |
councilsoft |
Content Grid Slider |
2025-12-29T15:58:57.851Z | 2026-04-28T16:14:32.164Z |
| cve-2025-68870 | 7.5 (v3.1) | WordPress CookieHint WP plugin <= 1.0.0 - Local File I… |
reDim GmbH |
CookieHint WP |
2025-12-29T16:09:05.270Z | 2026-04-28T16:14:32.148Z |
| cve-2025-68876 | 7.1 (v3.1) | WordPress Invelity SPS connect plugin <= 1.0.8 - Refle… |
INVELITY |
Invelity SPS connect |
2025-12-29T16:05:23.287Z | 2026-04-28T16:14:32.135Z |
| cve-2025-68875 | 6.5 (v3.1) | WordPress Flaming Password Reset plugin <= 1.0.3 - Cro… |
jcaruso001 |
Flaming Password Reset |
2026-01-08T09:17:52.299Z | 2026-04-28T16:14:32.134Z |
| cve-2025-68877 | 7.5 (v3.1) | WordPress CedCommerce Integration for Good Market plug… |
cedcommerce |
CedCommerce Integration for Good Market |
2025-12-29T16:03:22.206Z | 2026-04-28T16:14:32.129Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2007-000560 | Safari URL spoofing vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000559 | Yayoi Kaikei improper handling of credential information | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000551 | Aruba Mobility Controller Series cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000548 | Nessus report function vulnerable to arbitrary script execution | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000507 | Flash Player allows to send arbitrary Referer headers | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000494 | KDDI sample CGI download program directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000491 | Lhaca LHZ Archive Extended Header Size Processing Buffer Overflow Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000487 | sHTTPd cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000486 | rktSNS cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000476 | Hiki arbitrary file deletion vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000471 | RaidenHTTPD cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000454 | dotProject cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000447 | Internet Explorer vulnerable in handling MHTML protocol | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000446 | Internet Explorer vulnerable in MHTML handling | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000434 | ADPLAN cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000429 | Meneame cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000420 | HP System Management Homepage cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000400 | Advance-Flow cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000395 | Homepage Builder sample CGI programs vulnerable to OS command injection | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000322 | Lunascape RSS reader arbitrary script execution vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000301 | Canon Network Camera Server VB100 Series vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000290 | InfoBarrier4 self-decrypted file vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000260 | Shihonkanri Plus Ver2 GOOUT directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000259 | open-gorotto cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000236 | Overlay Weaver cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000229 | MailDwarf vulnerability allows unauthorized sending of emails | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000228 | MailDwarf cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000227 | CruiseWorks and Minna De Office vulnerable in access restrictions | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000225 | NewsGlue and Ikinari Jijyoutsuu arbitrary script execution vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000218 | Interstage Application Server cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0839 | Multiples vulnérabilités dans les produits IBM | 2023-10-13T00:00:00.000000 | 2023-10-13T00:00:00.000000 |
| certfr-2023-avi-0832 | Multiples vulnérabilités dans Apache Tomcat | 2023-10-12T00:00:00.000000 | 2023-10-13T00:00:00.000000 |
| certfr-2023-avi-0838 | Multiples vulnérabilités dans les produits Apple | 2023-10-12T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0837 | Multiples vulnérabilités dans les produits F5 | 2023-10-12T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0836 | Multiples vulnérabilités dans les produits Juniper | 2023-10-12T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0835 | Vulnérabilité dans Palo Alto Networks Cortex XSOAR | 2023-10-12T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0834 | Multiples vulnérabilités dans Xen | 2023-10-12T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0833 | Multiples vulnérabilités dans les produits Adobe | 2023-10-12T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0831 | Multiples vulnérabilités dans Samba | 2023-10-12T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0821 | Multiples vulnérabilités dans SonicWall Net Extender | 2023-10-11T00:00:00.000000 | 2023-10-12T00:00:00.000000 |
| certfr-2023-avi-0830 | Multiples vulnérabilités dans les produits Microsoft | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0829 | Multiples vulnérabilités dans Microsoft Azure | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0828 | Multiples vulnérabilités dans Microsoft .Net | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0826 | Multiples vulnérabilités dans Microsoft Office | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0825 | Multiples vulnérabilités dans Tenable Security Center | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0824 | Multiples vulnérabilités dans les produits Fortinet | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0823 | Multiples vulnérabilités dans les produits Citrix | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0822 | Multiples vulnérabilités dans les produits SAP | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0820 | Multiples vulnérabilités dans les produits ElasticSearch | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0819 | Multiples vulnérabilités dans les produits Siemens | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0818 | Multiples vulnérabilités dans les produits Schneider | 2023-10-11T00:00:00.000000 | 2023-10-11T00:00:00.000000 |
| certfr-2023-avi-0817 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-10-09T00:00:00.000000 | 2023-10-09T00:00:00.000000 |
| certfr-2023-avi-0816 | Vulnérabilité dans les produits Synology | 2023-10-09T00:00:00.000000 | 2023-10-09T00:00:00.000000 |
| certfr-2023-avi-0815 | Multiples vulnérabilités dans les produits Qnap | 2023-10-09T00:00:00.000000 | 2023-10-09T00:00:00.000000 |
| certfr-2023-avi-0814 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-10-06T00:00:00.000000 | 2023-10-06T00:00:00.000000 |
| certfr-2023-avi-0813 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-10-06T00:00:00.000000 | 2023-10-06T00:00:00.000000 |
| certfr-2023-avi-0812 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-10-06T00:00:00.000000 | 2023-10-06T00:00:00.000000 |
| certfr-2023-avi-0811 | Multiples vulnérabilités dans Google Android | 2023-10-06T00:00:00.000000 | 2023-10-06T00:00:00.000000 |
| certfr-2023-avi-0810 | Vulnérabilité dans les produits Sophos | 2023-10-06T00:00:00.000000 | 2023-10-06T00:00:00.000000 |
| certfr-2023-avi-0803 | Vulnérabilité dans Atlassian Confluence | 2023-10-05T00:00:00.000000 | 2023-10-06T00:00:00.000000 |