Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68506 | 8.1 (v3.1) | WordPress Docket Cache plugin <= 24.07.03 - Local File… |
Nawawi Jamili |
Docket Cache |
2025-12-24T13:10:26.727Z | 2026-04-28T16:14:28.879Z |
| cve-2025-68509 | 4.7 (v3.1) | WordPress User Submitted Posts plugin <= 20251121 - Op… |
Jeff Starr |
User Submitted Posts |
2025-12-24T12:31:21.266Z | 2026-04-28T16:14:28.876Z |
| cve-2025-68500 | 4.9 (v3.1) | WordPress Prime Slider – Addons For Elementor plugin <… |
bdthemes |
Prime Slider – Addons For Elementor |
2025-12-24T12:31:20.426Z | 2026-04-28T16:14:28.870Z |
| cve-2025-68503 | 6.5 (v3.1) | WordPress JetBlog plugin <= 2.4.7 - Broken Access Cont… |
Crocoblock |
JetBlog |
2025-12-29T21:15:43.312Z | 2026-04-28T16:14:28.840Z |
| cve-2025-68498 | 6.5 (v3.1) | WordPress JetTabs plugin <= 2.2.12 - Broken Access Con… |
Crocoblock |
JetTabs |
2025-12-29T23:13:35.444Z | 2026-04-28T16:14:28.789Z |
| cve-2025-68499 | 6.5 (v3.1) | WordPress JetTabs plugin <= 2.2.12 - Cross Site Script… |
Crocoblock |
JetTabs |
2025-12-29T23:10:45.157Z | 2026-04-28T16:14:28.744Z |
| cve-2025-68497 | 5.9 (v3.1) | WordPress Astra Widgets plugin <= 1.2.16 - Cross Site … |
Brainstorm Force |
Astra Widgets |
2025-12-24T12:31:19.996Z | 2026-04-28T16:14:28.741Z |
| cve-2025-68496 | 7.6 (v3.1) | WordPress User Feedback plugin <= 1.10.0 - SQL Injecti… |
Syed Balkhi |
User Feedback |
2025-12-24T12:31:19.688Z | 2026-04-28T16:14:28.673Z |
| cve-2025-68494 | 5.3 (v3.1) | WordPress Premium Addons for Elementor plugin <= 4.11.… |
Leap13 |
Premium Addons for Elementor |
2025-12-24T12:31:19.012Z | 2026-04-28T16:14:28.625Z |
| cve-2025-68082 | 5.4 (v3.1) | WordPress Semrush Content Toolkit plugin <= 1.1.32 - C… |
SEMrush CY LTD |
Semrush Content Toolkit |
2025-12-16T08:13:05.169Z | 2026-04-28T16:14:28.361Z |
| cve-2025-68071 | 6.5 (v3.1) | WordPress Essential Real Estate plugin <= 5.3.2 - Inse… |
g5theme |
Essential Real Estate |
2025-12-16T08:13:03.975Z | 2026-04-28T16:14:28.324Z |
| cve-2025-68083 | 5.4 (v3.1) | WordPress Meks Quick Plugin Disabler plugin <= 1.0 - C… |
Meks |
Meks Quick Plugin Disabler |
2025-12-16T08:13:05.365Z | 2026-04-28T16:14:28.309Z |
| cve-2025-68084 | 5.4 (v3.1) | WordPress Ultimate Auction plugin <= 4.3.3 - Broken A… |
Nitesh |
Ultimate Auction |
2025-12-16T08:13:05.552Z | 2026-04-28T16:14:28.307Z |
| cve-2025-68073 | 6.5 (v3.1) | WordPress GDPR CCPA Compliance Support plugin <= 2.7.4… |
Ninja Team |
GDPR CCPA Compliance Support |
2026-01-22T16:52:07.197Z | 2026-04-28T16:14:28.281Z |
| cve-2025-68069 | 7.1 (v3.1) | WordPress Directorist plugin <= 8.6.6 - Broken Access … |
wpWax |
Directorist |
2026-02-20T15:46:38.064Z | 2026-04-28T16:14:28.215Z |
| cve-2025-68067 | 7.5 (v3.1) | WordPress Stockholm Core plugin <= 2.4.6 - Local File … |
Select-Themes |
Stockholm Core |
2025-12-16T08:13:03.257Z | 2026-04-28T16:14:28.195Z |
| cve-2025-68065 | 7.5 (v3.1) | WordPress Hub Core plugin <= 5.0.8 - Local File Inclus… |
LiquidThemes |
Hub Core |
2025-12-16T08:13:01.354Z | 2026-04-28T16:14:28.031Z |
| cve-2025-68061 | 7.5 (v3.1) | WordPress EduMall theme <= 4.4.7 - Local File Inclusio… |
ThemeMove |
EduMall |
2025-12-16T08:13:00.884Z | 2026-04-28T16:14:28.030Z |
| cve-2025-68059 | 7.6 (v3.1) | WordPress Hotel Listing plugin <= 1.4.2 - Broken Acces… |
e-plugins |
Hotel Listing |
2026-01-22T16:52:06.756Z | 2026-04-28T16:14:27.936Z |
| cve-2025-68054 | 8.5 (v3.1) | WordPress CountDown With Image or Video Background plu… |
LambertGroup |
CountDown With Image or Video Background |
2025-12-16T08:12:59.794Z | 2026-04-28T16:14:27.882Z |
| cve-2025-68057 | 7.6 (v3.1) | WordPress Hospital Doctor Directory plugin <= 1.3.9 - … |
e-plugins |
Hospital Doctor Directory |
2026-01-22T16:52:06.352Z | 2026-04-28T16:14:27.857Z |
| cve-2025-68058 | 7.6 (v3.1) | WordPress Institutions Directory plugin <= 1.3..4 - Br… |
e-plugins |
Institutions Directory |
2026-01-22T16:52:06.554Z | 2026-04-28T16:14:27.820Z |
| cve-2025-68055 | 8.5 (v3.1) | WordPress Hydra Booking plugin <= 1.1.32 - SQL Injecti… |
Themefic |
Hydra Booking |
2025-12-16T08:12:59.985Z | 2026-04-28T16:14:27.805Z |
| cve-2025-68053 | 8.5 (v3.1) | WordPress xPromoter plugin <= 1.3.4 - SQL Injection vu… |
LambertGroup |
xPromoter |
2025-12-16T08:12:59.596Z | 2026-04-28T16:14:27.776Z |
| cve-2025-68056 | 8.5 (v3.1) | WordPress LBG Zoominoutslider plugin <= 5.4.4 - SQL In… |
LambertGroup |
LBG Zoominoutslider |
2025-12-16T08:13:00.522Z | 2026-04-28T16:14:27.744Z |
| cve-2025-68051 | 7.5 (v3.1) | WordPress Shiprocket plugin <= 2.0.8 - Insecure Direct… |
Shiprocket |
Shiprocket |
2026-02-20T15:46:37.798Z | 2026-04-28T16:14:27.678Z |
| cve-2025-68039 | 6.5 (v3.1) | WordPress WP BackItUp plugin <= 2.1.0 - Broken Access … |
Chris Simmons |
WP BackItUp |
2026-01-22T16:52:05.483Z | 2026-04-28T16:14:27.657Z |
| cve-2025-68044 | 8.6 (v3.1) | WordPress Five Star Restaurant Reservations plugin <= … |
Rustaurius |
Five Star Restaurant Reservations |
2026-01-05T10:40:55.539Z | 2026-04-28T16:14:27.592Z |
| cve-2025-68040 | 6.5 (v3.1) | WordPress WP Project Manager plugin <= 3.0.1 - Sensiti… |
weDevs |
WP Project Manager |
2025-12-29T23:25:11.382Z | 2026-04-28T16:14:27.401Z |
| cve-2025-68038 | 7.2 (v3.1) | WordPress Icegram Express Pro plugin < 5.9.14 - PHP Ob… |
Icegram |
Icegram Express Pro |
2025-12-24T13:10:25.043Z | 2026-04-28T16:14:27.348Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2005-000795 | HTTPD-User-Manage cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000794 | Kent Web PostMail vulnerable to third party mail relay | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000793 | Hyper Estraier directory traversal/denial of service vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000792 | eBASEweb SQL injection vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000791 | Cross-site scripting vulnerability in the Unicode version of msearch | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000789 | Hyper NIKKI System cross-site request forgery vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000788 | FreeStyleWiki command injection vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000787 | Pochy denial-of-service (DoS) vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000786 | WirelessIP5000 has multiple vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000785 | WirelessIP5000 has multiple vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000784 | WirelessIP5000 has multiple vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000783 | WirelessIP5000 has multiple vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000782 | WirelessIP5000 has multiple vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000781 | Common Management Agent 3.x vulnerable to information leakage | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000780 | Hiki cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000779 | Hiki cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000778 | QRcode Perl CGI & PHP script vulnerable to denial of service attack | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000777 | tDiary cross-site request forgery vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000776 | Java Cryptography Extension 1.2.1 (JCE 1.2.1) will no longer function properly after July 28, 2005 due to the expiration of its digital certificate | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000774 | SFS cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000773 | desknet's cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000772 | Inappropriate interpretation of mailto URL scheme by mail client software | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000771 | Wiki clone cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000770 | Virus Security memory leak vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000769 | Virus Security heap overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000768 | Movable Type session management vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000767 | WebUD arbitrary program execution vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000766 | w3ml cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000765 | Buffalo router configuration management interface vulnerable to remote access and password leakage | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000764 | Website connection problem when a mobile phone terminal uses specific QR code | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0685 | Multiples vulnérabilités dans Qnap QTS et QuTS hero | 2023-08-25T00:00:00.000000 | 2023-08-25T00:00:00.000000 |
| certfr-2023-avi-0684 | Vulnérabilité dans SolarWinds Serv-U | 2023-08-25T00:00:00.000000 | 2023-08-25T00:00:00.000000 |
| certfr-2023-avi-0683 | Vulnérabilité dans les produits WithSecure | 2023-08-24T00:00:00.000000 | 2023-08-24T00:00:00.000000 |
| certfr-2023-avi-0682 | Multiples vulnérabilités dans Mitel MiVoice Connect | 2023-08-24T00:00:00.000000 | 2023-08-24T00:00:00.000000 |
| certfr-2023-avi-0681 | Multiples vulnérabilités dans les produits Cisco | 2023-08-24T00:00:00.000000 | 2023-08-24T00:00:00.000000 |
| certfr-2023-avi-0680 | Vulnérabilité dans MongoDB Server | 2023-08-24T00:00:00.000000 | 2023-08-24T00:00:00.000000 |
| certfr-2023-avi-0679 | Vulnérabilité dans Spring-Kafka | 2023-08-24T00:00:00.000000 | 2023-08-24T00:00:00.000000 |
| certfr-2023-avi-0678 | Vulnérabilité dans Wireshark | 2023-08-24T00:00:00.000000 | 2023-08-24T00:00:00.000000 |
| certfr-2023-avi-0677 | Multiples vulnérabilités dans Moxa ioLogik | 2023-08-24T00:00:00.000000 | 2023-08-24T00:00:00.000000 |
| certfr-2023-avi-0676 | Vulnérabilité dans Zimbra Collaboration Suite | 2023-08-23T00:00:00.000000 | 2023-08-23T00:00:00.000000 |
| certfr-2023-avi-0675 | Multiples vulnérabilités dans Google Chrome | 2023-08-23T00:00:00.000000 | 2023-08-23T00:00:00.000000 |
| certfr-2023-avi-0674 | Multiples vulnérabilités dans Aruba EdgeConnect SD-WAN Orchestrator | 2023-08-23T00:00:00.000000 | 2023-08-23T00:00:00.000000 |
| certfr-2023-avi-0673 | Vulnérabilité dans Ivanti Sentry | 2023-08-22T00:00:00.000000 | 2023-08-22T00:00:00.000000 |
| certfr-2023-avi-0672 | Multiples vulnérabilités dans Microsoft Edge | 2023-08-22T00:00:00.000000 | 2023-08-22T00:00:00.000000 |
| certfr-2023-avi-0671 | Multiples vulnérabilités dans Moodle | 2023-08-21T00:00:00.000000 | 2023-08-21T00:00:00.000000 |
| certfr-2023-avi-0670 | Vulnérabilité dans Fortinet FortiOS | 2023-08-21T00:00:00.000000 | 2023-08-21T00:00:00.000000 |
| certfr-2023-avi-0669 | Multiples vulnérabilités dans PHP | 2023-08-21T00:00:00.000000 | 2023-08-21T00:00:00.000000 |
| certfr-2023-avi-0668 | Vulnérabilité dans les caméras Synology | 2023-08-21T00:00:00.000000 | 2023-08-21T00:00:00.000000 |
| certfr-2023-avi-0667 | Multiples vulnérabilités dans le noyau Linux de Debian et DebianLTS | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0666 | Multiples vulnérabilités dans IBM Cognos Analytics | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0665 | Multiples vulnérabilités dans les produits ClamAV | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0664 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0663 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0662 | Vulnérabilité dans MISP | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0661 | Multiples vulnérabilités dans Microsoft Edge | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0660 | Vulnérabilité dans Juniper Junos OS | 2023-08-18T00:00:00.000000 | 2023-08-18T00:00:00.000000 |
| certfr-2023-avi-0659 | Multiples vulnérabilités dans les produits Moxa | 2023-08-17T00:00:00.000000 | 2023-08-17T00:00:00.000000 |
| certfr-2023-avi-0658 | Multiples vulnérabilités dans les produits Cisco | 2023-08-17T00:00:00.000000 | 2023-08-17T00:00:00.000000 |
| certfr-2023-avi-0657 | Vulnérabilité dans Microsoft Office et OneNote | 2023-08-16T00:00:00.000000 | 2023-08-16T00:00:00.000000 |
| certfr-2023-avi-0656 | Multiples vulnérabilités dans Tenable Sensor Proxy | 2023-08-16T00:00:00.000000 | 2023-08-16T00:00:00.000000 |