Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68574 | 5.9 (v3.1) | WordPress WPBakery Visual Composer WHMCS Elements plug… |
voidcoders |
WPBakery Visual Composer WHMCS Elements |
2025-12-24T13:10:38.100Z | 2026-04-28T16:14:30.666Z |
| cve-2025-68571 | 5.3 (v3.1) | WordPress SALESmanago plugin <= 3.9.0 - Broken Access … |
SALESmanago |
SALESmanago & Leadoo |
2025-12-24T13:10:37.254Z | 2026-04-28T16:14:30.665Z |
| cve-2025-68582 | 5.3 (v3.1) | WordPress Funnelforms Free plugin <= 3.8 - Broken Acce… |
Funnelforms |
Funnelforms Free |
2025-12-24T13:10:40.817Z | 2026-04-28T16:14:30.660Z |
| cve-2025-68572 | 5.3 (v3.1) | WordPress BBP Core plugin <= 1.4.1 - Broken Access Con… |
Spider Themes |
BBP Core |
2025-12-24T13:10:37.515Z | 2026-04-28T16:14:30.641Z |
| cve-2025-68568 | 5.3 (v3.1) | WordPress Claspo – Popups, Spin the Wheel & Email Capt… |
Claspo Popup Builders |
Claspo – Popups, Spin the Wheel & Email Capture |
2025-12-24T13:10:36.357Z | 2026-04-28T16:14:30.628Z |
| cve-2025-68569 | 6.5 (v3.1) | WordPress WP Time Slots Booking Form plugin <= 1.2.39 … |
codepeople |
WP Time Slots Booking Form |
2025-12-24T13:10:36.669Z | 2026-04-28T16:14:30.612Z |
| cve-2025-68567 | 5.4 (v3.1) | WordPress My auctions allegro plugin <= 3.6.33 - Cross… |
wphocus |
My auctions allegro |
2025-12-24T13:10:36.094Z | 2026-04-28T16:14:30.610Z |
| cve-2025-68566 | 5.9 (v3.1) | WordPress My auctions allegro plugin <= 3.6.35 - Cross… |
wphocus |
My auctions allegro |
2025-12-24T13:10:35.820Z | 2026-04-28T16:14:30.498Z |
| cve-2025-68564 | 6.5 (v3.1) | WordPress Sendy plugin <= 3.4.2 - Broken Access Contro… |
sendy |
Sendy |
2026-02-20T15:46:41.136Z | 2026-04-28T16:14:30.399Z |
| cve-2025-68562 | 9.9 (v3.1) | WordPress MapSVG plugin <= 8.7.3 - Arbitrary File Uplo… |
RomanCode |
MapSVG |
2025-12-29T21:13:24.913Z | 2026-04-28T16:14:30.369Z |
| cve-2025-68558 | 6.5 (v3.1) | WordPress Depicter Slider plugin <= 4.0.4 - Broken Acc… |
averta |
Depicter Slider |
2026-01-22T16:52:08.541Z | 2026-04-28T16:14:30.364Z |
| cve-2025-68565 | 5.3 (v3.1) | WordPress Twitch Player plugin <= 2.1.3 - Broken Acces… |
JayBee |
Twitch Player |
2025-12-24T13:10:35.534Z | 2026-04-28T16:14:30.361Z |
| cve-2025-68560 | 7.5 (v3.1) | WordPress TheGem Theme Elements (for Elementor) plugin… |
CodexThemes |
TheGem Theme Elements (for Elementor) |
2025-12-23T11:36:26.213Z | 2026-04-28T16:14:30.348Z |
| cve-2025-68563 | 7.5 (v3.1) | WordPress Subscribe to Unlock Lite plugin <= 1.3.0 - L… |
WP Shuffle |
Subscribe to Unlock Lite |
2025-12-24T12:31:30.996Z | 2026-04-28T16:14:30.339Z |
| cve-2025-68561 | 7.6 (v3.1) | WordPress AutomatorWP plugin <= 5.2.4 - SQL Injection … |
Ruben Garcia |
AutomatorWP |
2025-12-23T11:34:34.900Z | 2026-04-28T16:14:30.309Z |
| cve-2025-68556 | 5.3 (v3.1) | WordPress HAPPY plugin <= 1.0.9 - Broken Access Contro… |
VillaTheme |
HAPPY |
2025-12-23T11:44:49.953Z | 2026-04-28T16:14:30.292Z |
| cve-2025-68557 | 4.3 (v3.1) | WordPress Chakra test plugin <= 1.0.1 - Broken Access … |
Vikas Ratudi |
Chakra test |
2025-12-23T11:43:26.693Z | 2026-04-28T16:14:30.258Z |
| cve-2025-68546 | 7.5 (v3.1) | WordPress Nika theme <= 1.2.14 - Local File Inclusion … |
thembay |
Nika |
2025-12-23T12:00:07.057Z | 2026-04-28T16:14:30.256Z |
| cve-2025-68551 | 6.5 (v3.1) | WordPress VPSUForm plugin <= 3.2.24 - Sensitive Data E… |
Vikas Ratudi |
VPSUForm |
2025-12-23T11:46:19.271Z | 2026-04-28T16:14:30.248Z |
| cve-2025-68550 | 7.6 (v3.1) | WordPress WPBulky plugin <= 1.1.13 - SQL Injection vul… |
VillaTheme |
WPBulky |
2025-12-23T11:47:59.408Z | 2026-04-28T16:14:30.246Z |
| cve-2025-68559 | 6.5 (v3.1) | WordPress TheGem Theme Elements (for Elementor) plugin… |
CodexThemes |
TheGem Theme Elements (for Elementor) |
2025-12-23T11:37:35.431Z | 2026-04-28T16:14:30.244Z |
| cve-2025-68548 | 6.5 (v3.1) | WordPress Responsive Posts Carousel Pro plugin <= 15.2… |
WebCodingPlace |
Responsive Posts Carousel Pro |
2025-12-23T11:50:41.384Z | 2026-04-28T16:14:30.224Z |
| cve-2025-68552 | 7.5 (v3.1) | WordPress WooCommerce Coming Soon Product with Countdo… |
WebCodingPlace |
WooCommerce Coming Soon Product with Countdown |
2026-02-20T15:46:40.954Z | 2026-04-28T16:14:30.210Z |
| cve-2025-68547 | 7.5 (v3.1) | WordPress Follow My Blog Post plugin <= 2.4.0 - Arbitr… |
wpweb |
Follow My Blog Post |
2026-01-05T10:42:04.269Z | 2026-04-28T16:14:30.207Z |
| cve-2025-68545 | 8.1 (v3.1) | WordPress Nika theme <= 1.2.14 - Local File Inclusion … |
thembay |
Nika |
2026-02-20T15:46:40.615Z | 2026-04-28T16:14:30.118Z |
| cve-2025-68544 | 7.5 (v3.1) | WordPress Diza theme <= 1.3.15 - Local File Inclusion … |
thembay |
Diza |
2025-12-23T11:58:39.264Z | 2026-04-28T16:14:29.970Z |
| cve-2025-68534 | 6.5 (v3.1) | WordPress PDF for WPForms plugin <= 6.3.0 - Broken Acc… |
add-ons.org |
PDF for WPForms |
2026-02-20T15:46:39.366Z | 2026-04-28T16:14:29.944Z |
| cve-2025-68529 | 4.3 (v3.1) | WordPress WP Email Capture plugin <= 3.12.5 - Cross Si… |
Rhys Wynne |
WP Email Capture |
2025-12-24T12:31:25.832Z | 2026-04-28T16:14:29.921Z |
| cve-2025-68535 | 4.3 (v3.1) | WordPress Sunshine Photo Cart plugin <= 3.5.7.1 - Brok… |
sunshinephotocart |
Sunshine Photo Cart |
2025-12-24T12:31:27.019Z | 2026-04-28T16:14:29.918Z |
| cve-2025-68527 | 6.5 (v3.1) | WordPress Academy LMS plugin <= 3.4.0 - Cross Site Scr… |
Kodezen LLC |
Academy LMS |
2025-12-24T12:31:25.030Z | 2026-04-28T16:14:29.593Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2006-000648 | mail f/w system vulnerable to allow unauthorized email transmissionk | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000647 | Owl cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000646 | Owl SQL injection vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000644 | NetCommons cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000643 | 04WebServer directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000642 | 04WebServer cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000641 | Kiri directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000640 | Drupal cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000638 | Dokeos cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000637 | QwikiWiki cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000636 | Loudblog cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000635 | Geeklog cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000634 | ServerView directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000633 | ServerView cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000632 | ATutor cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000631 | ACollab SQL injection vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000630 | Wiki clone products vulnerable to denial of service attacks | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000629 | Wiki clone products vulnerable to denial of service attacks | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000628 | Wiki clone products vulnerable to denial of service attacks | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000627 | Phorum cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000626 | dotProject cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000625 | CGI RESCUE WebFORM allows unauthorized email transmission | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000624 | CGI RESCUE WebFORM allows unauthorized email transmission | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000623 | Joomla! cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000622 | dotProject cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000621 | RWiki cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000620 | RWiki arbitrary Ruby script execution vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000619 | MyWeb SQL injection vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000617 | Multiple email clients vulnerable to directory traversal due to inappropriate unicode handling | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2006-000616 | DonutP and UnDonut confirmation dialog display vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0746 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2023-09-14T00:00:00.000000 | 2023-09-14T00:00:00.000000 |
| certfr-2023-avi-0745 | Vulnérabilité dans les produits Fortinet | 2023-09-14T00:00:00.000000 | 2023-09-14T00:00:00.000000 |
| certfr-2023-avi-0744 | Multiples vulnérabilités dans Zimbra | 2023-09-14T00:00:00.000000 | 2023-09-14T00:00:00.000000 |
| certfr-2023-avi-0734 | Vulnérabilité dans les produits Mozilla | 2023-09-13T00:00:00.000000 | 2023-09-14T00:00:00.000000 |
| certfr-2023-avi-0743 | Multiples vulnérabilités dans les produits Microsoft | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0742 | Multiples vulnérabilités dans Microsoft Azure | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0741 | Multiples vulnérabilités dans Microsoft .Net | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0740 | Multiples vulnérabilités dans Microsoft Windows | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0739 | Multiples vulnérabilités dans Microsoft Office | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0738 | Vulnérabilité dans Microsoft Edge | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0737 | Multiples vulnérabilités dans les produits SAP | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0736 | Vulnérabilité dans les produits Adobe | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0735 | Multiples vulnérabilités dans Google Chrome | 2023-09-13T00:00:00.000000 | 2023-09-13T00:00:00.000000 |
| certfr-2023-avi-0733 | Multiples vulnérabilités dans les produits Siemens | 2023-09-12T00:00:00.000000 | 2023-09-12T00:00:00.000000 |
| certfr-2023-avi-0732 | Vulnérabilité dans les produits Schneider | 2023-09-12T00:00:00.000000 | 2023-09-12T00:00:00.000000 |
| certfr-2023-avi-0731 | Multiples vulnérabilités dans Foxit PDF Reader et Editor | 2023-09-12T00:00:00.000000 | 2023-09-12T00:00:00.000000 |
| certfr-2023-avi-0730 | Vulnérabilité dans Google Chrome | 2023-09-12T00:00:00.000000 | 2023-09-12T00:00:00.000000 |
| certfr-2023-avi-0729 | Vulnérabilité dans les produits Apple | 2023-09-12T00:00:00.000000 | 2023-09-12T00:00:00.000000 |
| certfr-2023-avi-0728 | Multiples vulnérabilités dans IBM Cognos | 2023-09-12T00:00:00.000000 | 2023-09-12T00:00:00.000000 |
| certfr-2023-avi-0727 | Multiples vulnérabilités dans les produits NetApp | 2023-09-11T00:00:00.000000 | 2023-09-11T00:00:00.000000 |
| certfr-2023-avi-0726 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-09-08T00:00:00.000000 | 2023-09-08T00:00:00.000000 |
| certfr-2023-avi-0725 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-09-08T00:00:00.000000 | 2023-09-08T00:00:00.000000 |
| certfr-2023-avi-0724 | Vulnérabilité dans IBM AIX | 2023-09-08T00:00:00.000000 | 2023-09-08T00:00:00.000000 |
| certfr-2023-avi-0723 | Multiples vulnérabilités dans Microsoft Edge | 2023-09-08T00:00:00.000000 | 2023-09-08T00:00:00.000000 |
| certfr-2023-avi-0722 | Vulnérabilité dans Veeam Backup | 2023-09-08T00:00:00.000000 | 2023-09-08T00:00:00.000000 |
| certfr-2023-avi-0721 | Multiples vulnérabilités dans les produits Qnap | 2023-09-08T00:00:00.000000 | 2023-09-08T00:00:00.000000 |
| certfr-2023-avi-0720 | Multiples vulnérabilités dans les produits Apple | 2023-09-08T00:00:00.000000 | 2023-09-08T00:00:00.000000 |
| certfr-2023-avi-0719 | Multiples vulnérabilités dans les produits IBM | 2023-09-07T00:00:00.000000 | 2023-09-07T00:00:00.000000 |
| certfr-2023-avi-0718 | Multiples vulnérabilités dans Aruba ArubaOS | 2023-09-07T00:00:00.000000 | 2023-09-07T00:00:00.000000 |
| certfr-2023-avi-0717 | Vulnérabilité dans Elasticsearch | 2023-09-07T00:00:00.000000 | 2023-09-07T00:00:00.000000 |