Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68605 | 6.5 (v3.1) | WordPress Post Grid and Gutenberg Blocks plugin <= 2.3… |
PickPlugins |
Post Grid and Gutenberg Blocks |
2025-12-24T13:10:48.261Z | 2026-04-28T16:14:31.280Z |
| cve-2025-68597 | 6.5 (v3.1) | WordPress Jobs for WordPress plugin <= 2.8.1 - Cross S… |
BlueGlass Interactive AG |
Jobs for WordPress |
2025-12-24T13:10:45.718Z | 2026-04-28T16:14:31.280Z |
| cve-2025-68607 | 6.5 (v3.1) | WordPress Custom Field Template plugin <= 2.7.7 - Cros… |
Hiroaki Miyashita |
Custom Field Template |
2025-12-29T21:10:50.618Z | 2026-04-28T16:14:31.270Z |
| cve-2025-68598 | 6.5 (v3.1) | WordPress Page Builder: Live Composer plugin <= 2.1.13… |
LiveComposer |
Page Builder: Live Composer |
2025-12-24T13:10:45.982Z | 2026-04-28T16:14:31.256Z |
| cve-2025-68596 | 5.3 (v3.1) | WordPress Bit Assist plugin <= 1.5.11 - Broken Access … |
Bit Apps |
Bit Assist |
2025-12-24T13:10:45.364Z | 2026-04-28T16:14:31.256Z |
| cve-2025-68592 | 4.3 (v3.1) | WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces… |
Liton Arefin |
WP Adminify |
2025-12-24T13:10:43.992Z | 2026-04-28T16:14:31.246Z |
| cve-2025-68600 | 4.9 (v3.1) | WordPress Link Library plugin <= 7.8.7 - Server Side R… |
Yannick Lefebvre |
Link Library |
2025-12-24T13:10:46.548Z | 2026-04-28T16:14:31.242Z |
| cve-2025-68591 | 5.4 (v3.1) | WordPress Simple File List plugin <= 6.1.18 - Broken A… |
Mitchell Bennis |
Simple File List |
2025-12-24T13:10:43.716Z | 2026-04-28T16:14:31.228Z |
| cve-2025-68593 | 5.4 (v3.1) | WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces… |
Liton Arefin |
WP Adminify |
2025-12-24T13:10:44.275Z | 2026-04-28T16:14:31.227Z |
| cve-2025-68594 | 5.3 (v3.1) | WordPress Poll, Survey & Quiz Maker Plugin by Opinion … |
Opinion Stage |
Poll, Survey & Quiz Maker Plugin by Opinion Stage |
2025-12-24T13:10:44.556Z | 2026-04-28T16:14:31.225Z |
| cve-2025-68585 | 2.7 (v3.1) | WordPress WP Document Revisions plugin <= 3.7.2 - Brok… |
Ben Balter |
WP Document Revisions |
2025-12-24T13:10:41.715Z | 2026-04-28T16:14:31.224Z |
| cve-2025-68581 | 5.4 (v3.1) | WordPress YITH Slider for page builders plugin <= 1.0.… |
YITHEMES |
YITH Slider for page builders |
2025-12-24T13:10:40.513Z | 2026-04-28T16:14:31.014Z |
| cve-2025-68590 | 7.6 (v3.1) | WordPress Integration for Contact Form 7 HubSpot plugi… |
CRM Perks |
Integration for Contact Form 7 HubSpot |
2025-12-24T13:10:43.422Z | 2026-04-28T16:14:30.930Z |
| cve-2025-68589 | 5.3 (v3.1) | WordPress WP Telegram Widget and Join Link plugin <= 2… |
WP Socio |
WP Telegram Widget and Join Link |
2025-12-24T13:10:43.150Z | 2026-04-28T16:14:30.900Z |
| cve-2025-68587 | 4.3 (v3.1) | WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co… |
Bob |
Watu Quiz |
2025-12-24T13:10:42.440Z | 2026-04-28T16:14:30.900Z |
| cve-2025-68586 | 5.3 (v3.1) | WordPress Cooked plugin <= 1.11.3 - Broken Access Cont… |
Gora Tech |
Cooked |
2025-12-24T13:10:42.037Z | 2026-04-28T16:14:30.893Z |
| cve-2025-68588 | 4.3 (v3.1) | WordPress TS Poll plugin <= 2.5.5 - Broken Access Cont… |
totalsoft |
TS Poll |
2025-12-24T13:10:42.857Z | 2026-04-28T16:14:30.876Z |
| cve-2025-68583 | 4.3 (v3.1) | WordPress Fast User Switching plugin <= 1.4.10 - Cross… |
Tikweb Management |
Fast User Switching |
2025-12-24T13:10:41.121Z | 2026-04-28T16:14:30.853Z |
| cve-2025-68584 | 4.3 (v3.1) | WordPress Vimeotheque plugin <= 2.3.5.2 - Cross Site R… |
Constantin Boiangiu |
Vimeotheque |
2025-12-24T13:10:41.424Z | 2026-04-28T16:14:30.844Z |
| cve-2025-68576 | 4.3 (v3.1) | WordPress Virusdie plugin <= 1.1.6 - Sensitive Data Ex… |
Virusdie |
Virusdie |
2025-12-24T13:10:38.690Z | 2026-04-28T16:14:30.715Z |
| cve-2025-68575 | 5.3 (v3.1) | WordPress Wappointment plugin <= 2.7.6 - Broken Access… |
Wappointment team |
Wappointment |
2025-12-24T13:10:38.366Z | 2026-04-28T16:14:30.714Z |
| cve-2025-68579 | 5.3 (v3.1) | WordPress FV Simpler SEO plugin <= 1.9.6 - Broken Acce… |
FolioVision |
FV Simpler SEO |
2025-12-24T13:10:39.669Z | 2026-04-28T16:14:30.710Z |
| cve-2025-68577 | 4.3 (v3.1) | WordPress Virusdie plugin <= 1.1.6 - Broken Access Con… |
Virusdie |
Virusdie |
2025-12-24T13:10:38.980Z | 2026-04-28T16:14:30.697Z |
| cve-2025-68573 | 5.4 (v3.1) | WordPress Simple Keyword to Link plugin <= 1.5 - Cross… |
Alessandro Piconi |
Simple Keyword to Link |
2025-12-24T13:10:37.793Z | 2026-04-28T16:14:30.696Z |
| cve-2025-68578 | 5.3 (v3.1) | WordPress Addonify plugin <= 2.0.4 - Broken Access Con… |
Addonify |
Addonify |
2025-12-24T13:10:39.343Z | 2026-04-28T16:14:30.691Z |
| cve-2025-68580 | 4.3 (v3.1) | WordPress Advanced Classifieds & Directory Pro plugin … |
pluginsware |
Advanced Classifieds & Directory Pro |
2025-12-24T13:10:40.193Z | 2026-04-28T16:14:30.690Z |
| cve-2025-68570 | 7.6 (v3.1) | WordPress Captivate Sync plugin <= 3.2.2 - SQL Injecti… |
captivateaudio |
Captivate Sync |
2025-12-24T13:10:36.970Z | 2026-04-28T16:14:30.673Z |
| cve-2025-68574 | 5.9 (v3.1) | WordPress WPBakery Visual Composer WHMCS Elements plug… |
voidcoders |
WPBakery Visual Composer WHMCS Elements |
2025-12-24T13:10:38.100Z | 2026-04-28T16:14:30.666Z |
| cve-2025-68571 | 5.3 (v3.1) | WordPress SALESmanago plugin <= 3.9.0 - Broken Access … |
SALESmanago |
SALESmanago & Leadoo |
2025-12-24T13:10:37.254Z | 2026-04-28T16:14:30.665Z |
| cve-2025-68582 | 5.3 (v3.1) | WordPress Funnelforms Free plugin <= 3.8 - Broken Acce… |
Funnelforms |
Funnelforms Free |
2025-12-24T13:10:40.817Z | 2026-04-28T16:14:30.660Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2006-000852 | Joomla! cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000851 | pnamazu cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000850 | a-blog cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000849 | SugarCRM cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000816 | Shobo Shobo Nikki System (sns) cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000812 | Hanako buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000809 | TikiWiki cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000803 | Chama Cargo cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000802 | Blogn cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000792 | tDiary cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000791 | phpComasy cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000784 | eyeOS cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000781 | EC-CUBE cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000777 | Nucleus cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000771 | Kahua vulnerable in allowing to share login sessions | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000760 | Hyper NIKKI System cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000758 | MyODBC Japanese Conversion Edition denial of service vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000753 | Ruby cgi.rb Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000742 | desknet's buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000737 | NEC MultiWriter 1700C/7500C FTP server vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000736 | NEC MultiWriter 1700C web server authentication bypass vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000734 | Ichitaro buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000695 | Kmail CGI authentication bypass vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000665 | TeraStation HD-HTGL series cross-site request forgery vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000654 | SugarCRM cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000653 | Movable Type vulnerabile to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000652 | MDPro cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000651 | Cybozu products vulnerable to directory traversal | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000650 | Cybozu products vulnerable to directory traversal | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000649 | Cybozu Office 6 information disclosure vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0776 | Vulnérabilité dans Elasticsearch | 2023-09-25T00:00:00.000000 | 2023-09-25T00:00:00.000000 |
| certfr-2023-avi-0598 | Multiples vulnérabilités dans Synology SRM | 2023-07-28T00:00:00.000000 | 2023-09-25T00:00:00.000000 |
| certfr-2023-avi-0775 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-09-22T00:00:00.000000 | 2023-09-22T00:00:00.000000 |
| certfr-2023-avi-0774 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-09-22T00:00:00.000000 | 2023-09-22T00:00:00.000000 |
| certfr-2023-avi-0773 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-09-22T00:00:00.000000 | 2023-09-22T00:00:00.000000 |
| certfr-2023-avi-0772 | Multiples vulnérabilités dans les produits Apple | 2023-09-22T00:00:00.000000 | 2023-09-22T00:00:00.000000 |
| certfr-2023-avi-0771 | Multiples vulnérabilités dans les produits Qnap | 2023-09-22T00:00:00.000000 | 2023-09-22T00:00:00.000000 |
| certfr-2023-avi-0769 | Multiples vulnérabilités dans les produits IBM | 2023-09-21T00:00:00.000000 | 2023-09-21T00:00:00.000000 |
| certfr-2023-avi-0768 | Vulnérabilité dans les produits Drupal | 2023-09-21T00:00:00.000000 | 2023-09-21T00:00:00.000000 |
| certfr-2023-avi-0767 | Multiples vulnérabilités dans Bind | 2023-09-21T00:00:00.000000 | 2023-09-21T00:00:00.000000 |
| certfr-2023-avi-0766 | Vulnérabilité dans les produits Xen | 2023-09-20T00:00:00.000000 | 2023-09-20T00:00:00.000000 |
| certfr-2023-avi-0765 | Vulnérabilité dans les produits ElasticSearch | 2023-09-20T00:00:00.000000 | 2023-09-20T00:00:00.000000 |
| certfr-2023-avi-0764 | Vulnérabilité dans les produits TrendMicro | 2023-09-20T00:00:00.000000 | 2023-09-20T00:00:00.000000 |
| certfr-2023-avi-0763 | Multiples vulnérabilités dans les produits Spring | 2023-09-19T00:00:00.000000 | 2023-09-19T00:00:00.000000 |
| certfr-2023-avi-0762 | Multiples vulnérabilités dans les produits ElasticSearch | 2023-09-19T00:00:00.000000 | 2023-09-19T00:00:00.000000 |
| certfr-2023-avi-0761 | Vulnérabilité dans GitLab CE et Gitlab EE | 2023-09-19T00:00:00.000000 | 2023-09-19T00:00:00.000000 |
| certfr-2023-avi-0760 | Multiples vulnérabilités dans NetApp HCI Baseboard Management Controller | 2023-09-19T00:00:00.000000 | 2023-09-19T00:00:00.000000 |
| certfr-2023-avi-0759 | Multiples vulnérabilités dans Microsoft Edge | 2023-09-18T00:00:00.000000 | 2023-09-18T00:00:00.000000 |
| certfr-2023-avi-0758 | Multiples vulnérabilités dans les produits Qnap | 2023-09-18T00:00:00.000000 | 2023-09-18T00:00:00.000000 |
| certfr-2023-avi-0757 | Multiples vulnérabilités dans IBM Spectrum Copy Data Management | 2023-09-18T00:00:00.000000 | 2023-09-18T00:00:00.000000 |
| certfr-2023-avi-0756 | Multiples vulnérabilités dans TrendMicro Deep Discovery Inspector | 2023-09-18T00:00:00.000000 | 2023-09-18T00:00:00.000000 |
| certfr-2023-avi-0755 | Multiples vulnérabilités dans les produits F-Secure | 2023-09-15T00:00:00.000000 | 2023-09-15T00:00:00.000000 |
| certfr-2023-avi-0754 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-09-15T00:00:00.000000 | 2023-09-15T00:00:00.000000 |
| certfr-2023-avi-0753 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-09-15T00:00:00.000000 | 2023-09-15T00:00:00.000000 |
| certfr-2023-avi-0752 | Multiples vulnérabilités dans le noyau Linux de Debian | 2023-09-15T00:00:00.000000 | 2023-09-15T00:00:00.000000 |
| certfr-2023-avi-0751 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-09-15T00:00:00.000000 | 2023-09-15T00:00:00.000000 |
| certfr-2023-avi-0750 | Vulnérabilité dans Apache Struts | 2023-09-14T00:00:00.000000 | 2023-09-14T00:00:00.000000 |
| certfr-2023-avi-0749 | Multiples vulnérabilités dans les produits Siemens | 2023-09-14T00:00:00.000000 | 2023-09-14T00:00:00.000000 |
| certfr-2023-avi-0748 | Vulnérabilité dans IBM DB2 | 2023-09-14T00:00:00.000000 | 2023-09-14T00:00:00.000000 |
| certfr-2023-avi-0747 | Vulnérabilité dans les produits Symantec | 2023-09-14T00:00:00.000000 | 2023-09-14T00:00:00.000000 |