Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-66074 | 9 (v3.1) | WordPress WP Webhooks plugin <= 3.3.8 - Arbitrary File… |
Cozmoslabs |
WP Webhooks |
2025-12-18T07:22:17.689Z | 2026-04-28T16:14:15.776Z |
| cve-2025-66073 | 7.2 (v3.1) | WordPress WP Webhooks plugin <= 3.3.8 - PHP Object Inj… |
Cozmoslabs |
WP Webhooks |
2025-11-21T12:29:56.667Z | 2026-04-28T16:14:15.776Z |
| cve-2025-66066 | 6.5 (v3.1) | WordPress Envo Extra plugin <= 1.9.11 - Cross Site Scr… |
EnvoThemes |
Envo Extra |
2025-11-21T12:29:55.680Z | 2026-04-28T16:14:15.744Z |
| cve-2025-66069 | 4.3 (v3.1) | WordPress PPOM for WooCommerce plugin <= 33.0.16 - Bro… |
Themeisle |
PPOM for WooCommerce |
2025-11-21T12:29:56.025Z | 2026-04-28T16:14:15.729Z |
| cve-2025-66068 | 6.5 (v3.1) | WordPress InstaWP Connect plugin <= 0.1.1.9 - Broken A… |
InstaWP |
InstaWP Connect |
2025-12-18T07:22:17.312Z | 2026-04-28T16:14:15.712Z |
| cve-2025-66065 | 6.5 (v3.1) | WordPress Gutenverse plugin <= 3.2.1 - Broken Access C… |
Jegstudio |
Gutenverse |
2025-11-21T12:29:55.513Z | 2026-04-28T16:14:15.667Z |
| cve-2025-66064 | 4.3 (v3.1) | WordPress Giveaways and Contests by RafflePress plugin… |
Syed Balkhi |
Giveaways and Contests by RafflePress |
2025-11-21T12:29:55.338Z | 2026-04-28T16:14:15.601Z |
| cve-2025-66054 | 7.5 (v3.1) | WordPress LearnPress plugin <= 4.2.9.4 - Broken Access… |
ThimPress |
LearnPress |
2025-12-18T07:22:17.129Z | 2026-04-28T16:14:15.533Z |
| cve-2025-66060 | 5.3 (v3.1) | WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.618Z | 2026-04-28T16:14:15.525Z |
| cve-2025-66059 | 5.3 (v3.1) | WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.426Z | 2026-04-28T16:14:15.521Z |
| cve-2025-66062 | 3.4 (v3.1) | WordPress WP YouTube Lyte plugin <= 1.7.28 - Open Redi… |
Frank Goossens |
WP YouTube Lyte |
2025-11-21T12:29:54.981Z | 2026-04-28T16:14:15.519Z |
| cve-2025-66063 | 5.4 (v3.1) | WordPress WP Google Review Slider plugin <= 17.4 - Bro… |
jgwhite33 |
WP Google Review Slider |
2025-11-21T12:29:55.169Z | 2026-04-28T16:14:15.490Z |
| cve-2025-66061 | 4.3 (v3.1) | WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.807Z | 2026-04-28T16:14:15.342Z |
| cve-2025-66057 | 6.5 (v3.1) | WordPress Bold Page Builder plugin <= 5.5.2 - Cross Si… |
boldthemes |
Bold Page Builder |
2025-11-21T12:29:54.209Z | 2026-04-28T16:14:15.307Z |
| cve-2025-64635 | 5.3 (v3.1) | WordPress Feeds for YouTube plugin <= 2.4.0 - Broken A… |
Syed Balkhi |
Feeds for YouTube |
2025-12-16T08:12:51.705Z | 2026-04-28T16:14:15.302Z |
| cve-2025-66058 | 6.5 (v3.1) | WordPress Post Grid and Gutenberg Blocks plugin <= 2.3… |
PickPlugins |
Post Grid and Gutenberg Blocks |
2025-12-18T16:15:15.498Z | 2026-04-28T16:14:15.298Z |
| cve-2025-64638 | 5.3 (v3.1) | WordPress OnPay.io for WooCommerce plugin <= 1.0.47 - … |
OnPay.io |
OnPay.io for WooCommerce |
2025-12-16T08:12:51.913Z | 2026-04-28T16:14:15.291Z |
| cve-2025-64639 | 5.3 (v3.1) | WordPress WP Compress for MainWP plugin <= 6.50.17 - B… |
WP Compress |
WP Compress for MainWP |
2025-12-16T08:12:52.102Z | 2026-04-28T16:14:15.284Z |
| cve-2025-64634 | 5.3 (v3.1) | WordPress Avada theme <= 7.13.2 - Broken Access Contro… |
ThemeFusion |
Avada |
2025-12-16T08:12:51.156Z | 2026-04-28T16:14:15.281Z |
| cve-2025-64632 | 5.3 (v3.1) | WordPress Google XML Sitemaps plugin <= 4.1.22 - Broke… |
Auctollo |
Google XML Sitemaps |
2025-12-16T08:12:50.749Z | 2026-04-28T16:14:15.242Z |
| cve-2025-64630 | 4.9 (v3.1) | WordPress Business Directory plugin <= 6.4.19 - Broken… |
Strategy11 Team |
Business Directory |
2025-12-16T08:12:50.318Z | 2026-04-28T16:14:15.185Z |
| cve-2025-64631 | 4.9 (v3.1) | WordPress WCFM Marketplace plugin <= 3.7.1 - Broken Ac… |
WC Lovers |
WCFM Marketplace |
2025-12-16T08:12:50.537Z | 2026-04-28T16:14:15.151Z |
| cve-2025-64384 | 5.3 (v3.1) | WordPress JetFormBuilder plugin <= 3.5.3 - Broken Acce… |
jetmonsters |
JetFormBuilder |
2025-11-13T09:24:36.292Z | 2026-04-28T16:14:14.846Z |
| cve-2025-64375 | 6.5 (v3.1) | WordPress WP Social Ninja plugin <= 3.20.1 - Broken Ac… |
Mahmudul Hasan Arif |
WP Social Ninja |
2025-12-18T07:22:16.373Z | 2026-04-28T16:14:14.843Z |
| cve-2025-64378 | 7.1 (v3.1) | WordPress ListingPro theme < 2.9.10 - Broken Access Co… |
CridioStudio |
ListingPro |
2025-12-18T07:22:16.946Z | 2026-04-28T16:14:14.807Z |
| cve-2025-64368 | 5.4 (v3.1) | WordPress Bard theme <= 1.6 - Cross Site Request Forge… |
Mikado-Themes |
Bard |
2025-10-31T11:42:40.843Z | 2026-04-28T16:14:14.723Z |
| cve-2025-64373 | 8.1 (v3.1) | WordPress Traveler theme < 3.2.6 - Local File Inclusio… |
shinetheme |
Traveler |
2025-12-18T07:22:16.006Z | 2026-04-28T16:14:14.711Z |
| cve-2025-64372 | 7.1 (v3.1) | WordPress Traveler theme < 3.2.6 - Cross Site Scriptin… |
shinetheme |
Traveler |
2025-12-18T07:22:15.823Z | 2026-04-28T16:14:14.653Z |
| cve-2025-64371 | 8.5 (v3.1) | WordPress Traveler theme < 3.2.6 - SQL Injection vulne… |
shinetheme |
Traveler |
2025-12-18T07:22:15.635Z | 2026-04-28T16:14:14.648Z |
| cve-2025-64366 | 7.6 (v3.1) | WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injec… |
Stylemix |
MasterStudy LMS |
2025-10-31T11:42:39.301Z | 2026-04-28T16:14:14.541Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0234 | Multiples vulnérabilités dans les produits Microsoft | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0233 | Multiples vulnérabilités dans Microsoft Azure | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0232 | Multiples vulnérabilités dans Microsoft Windows | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0231 | Multiples vulnérabilités dans Microsoft Office | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0230 | Vulnérabilité dans Microsoft Edge | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0229 | Multiples vulnérabilités dans les produits ownCloud | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0228 | Multiples vulnérabilités dans les produits SAP | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0227 | Multiples vulnérabilités dans les produits Adobe | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0226 | Multiples vulnérabilités dans Aruba ClearPass Policy Manager | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0225 | Vulnérabilité dans TrendMicro Endpoint Encryption | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0224 | Multiples vulnérabilités dans les routeurs Cisco Small Business | 2023-03-15T00:00:00.000000 | 2023-03-15T00:00:00.000000 |
| certfr-2023-avi-0223 | Multiples vulnérabilités dans les produits Mozilla | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0222 | Multiples vulnérabilités dans Microsoft Edge | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0221 | Multiples vulnérabilités dans MOXA NPort 6000 | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0220 | Multiples vulnérabilités dans les produits Siemens | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0219 | Multiples vulnérabilités dans IBM Sterling B2B Integrator | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0218 | Multiples vulnérabilités dans les produits Schneider Electric | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0217 | Multiples vulnérabilités dans TrendMicro Worry-Free Business Security | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0216 | Vulnérabilité dans les produits Tenable | 2023-03-14T00:00:00.000000 | 2023-03-14T00:00:00.000000 |
| certfr-2023-avi-0215 | Vulnérabilité dans TrendMicro TXOne StellarOne | 2023-03-13T00:00:00.000000 | 2023-03-13T00:00:00.000000 |
| certfr-2023-avi-0214 | Multiples vulnérabilités dans les produits IBM | 2023-03-13T00:00:00.000000 | 2023-03-13T00:00:00.000000 |
| certfr-2023-avi-0213 | Vulnérabilité dans SPIP | 2023-03-10T00:00:00.000000 | 2023-03-13T00:00:00.000000 |
| certfr-2023-avi-0212 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-03-10T00:00:00.000000 | 2023-03-10T00:00:00.000000 |
| certfr-2023-avi-0211 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-03-10T00:00:00.000000 | 2023-03-10T00:00:00.000000 |
| certfr-2023-avi-0210 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-03-10T00:00:00.000000 | 2023-03-10T00:00:00.000000 |
| certfr-2023-avi-0209 | Multiples vulnérabilités dans Google Android | 2023-03-10T00:00:00.000000 | 2023-03-10T00:00:00.000000 |
| certfr-2023-avi-0208 | Multiples vulnérabilités dans Nessus | 2023-03-10T00:00:00.000000 | 2023-03-10T00:00:00.000000 |
| certfr-2023-avi-0205 | Multiples vulnérabilités dans IBM WebSphere | 2023-03-09T00:00:00.000000 | 2023-03-10T00:00:00.000000 |
| certfr-2023-avi-0207 | Vulnérabilité dans Cisco IOS XR | 2023-03-09T00:00:00.000000 | 2023-03-09T00:00:00.000000 |
| certfr-2023-avi-0206 | Multiples vulnérabilités dans les produits Apple | 2023-03-09T00:00:00.000000 | 2023-03-09T00:00:00.000000 |