Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-59588 | 7.5 (v3.1) | WordPress Soledad Theme <= 8.6.8 - Local File Inclusio… |
PenciDesign |
Soledad |
2025-09-22T18:25:48.562Z | 2026-04-28T16:13:53.031Z |
| cve-2025-59587 | 6.5 (v3.1) | WordPress Penci Shortcodes & Performance Plugin < 6.1 … |
PenciDesign |
Penci Shortcodes & Performance |
2025-09-22T18:25:49.252Z | 2026-04-28T16:13:53.021Z |
| cve-2025-59592 | 6.5 (v3.1) | WordPress Make Column Clickable Elementor Plugin <= 1.… |
Fernando Acosta |
Make Column Clickable Elementor |
2025-09-22T18:25:45.095Z | 2026-04-28T16:13:53.008Z |
| cve-2025-59585 | 6.5 (v3.1) | WordPress Penci Recipe Plugin <= 4.0 - Cross Site Scri… |
PenciDesign |
Penci Recipe |
2025-09-22T18:25:50.704Z | 2026-04-28T16:13:52.996Z |
| cve-2025-59590 | 5.9 (v3.1) | WordPress Media Library Assistant Plugin <= 3.28 - Cro… |
David Lingren |
Media LIbrary Assistant |
2025-09-22T18:25:47.186Z | 2026-04-28T16:13:52.995Z |
| cve-2025-60041 | 8.8 (v3.1) | WordPress Emails Catch All plugin <= 3.5.3 - Broken Au… |
Iulia Cazan |
Emails Catch All |
2025-10-22T14:32:40.107Z | 2026-04-28T16:13:52.990Z |
| cve-2025-59581 | 6.5 (v3.1) | WordPress Ibtana Plugin <= 1.2.5.3 - Arbitrary Content… |
VW THEMES |
Ibtana |
2025-09-22T18:25:53.535Z | 2026-04-28T16:13:52.951Z |
| cve-2025-59582 | 5.3 (v3.1) | WordPress Ajax Load More Plugin <= 7.6.0.2 - Sensitive… |
Darren Cooney |
Ajax Load More |
2025-09-22T18:25:52.818Z | 2026-04-28T16:13:52.928Z |
| cve-2025-59583 | 6.5 (v3.1) | WordPress Penci Filter Everything Plugin < 1.7 - Cross… |
PenciDesign |
Penci Filter Everything |
2025-09-22T18:25:52.103Z | 2026-04-28T16:13:52.904Z |
| cve-2025-59577 | 4.3 (v3.1) | WordPress MasterStudy LMS Plugin <= 3.6.20 - Race Cond… |
Stylemix |
MasterStudy LMS |
2025-09-22T18:25:54.337Z | 2026-04-28T16:13:52.760Z |
| cve-2025-59568 | 4.3 (v3.1) | WordPress Zoho Flow Plugin <= 2.14.1 - Cross Site Requ… |
Zoho Flow |
Zoho Flow |
2025-09-22T18:25:59.396Z | 2026-04-28T16:13:52.743Z |
| cve-2025-59574 | 6.5 (v3.1) | WordPress WP Travel Engine Plugin <= 1.4.2 - Cross Sit… |
WP Travel Engine |
WP Travel Engine |
2025-09-22T18:25:55.789Z | 2026-04-28T16:13:52.741Z |
| cve-2025-59576 | 6.5 (v3.1) | WordPress MasterStudy LMS Plugin <= 3.6.20 - Broken Ac… |
Stylemix |
MasterStudy LMS |
2025-09-22T18:25:55.082Z | 2026-04-28T16:13:52.706Z |
| cve-2025-59572 | 8.8 (v3.1) | WordPress WorkScout-Core Plugin < 1.7.06 - Cross Site … |
purethemes |
WorkScout-Core |
2025-09-22T18:25:57.193Z | 2026-04-28T16:13:52.698Z |
| cve-2025-59573 | 5.3 (v3.1) | WordPress Cozy Blocks Plugin <= 2.1.29 - Content Injec… |
CozyThemes |
Cozy Blocks |
2025-09-22T18:25:56.508Z | 2026-04-28T16:13:52.686Z |
| cve-2025-59570 | 7.6 (v3.1) | WordPress Mail Mint Plugin <= 1.18.6 - SQL Injection V… |
WPFunnels |
Mail Mint |
2025-09-22T18:25:57.912Z | 2026-04-28T16:13:52.685Z |
| cve-2025-59569 | 6.5 (v3.1) | WordPress CubeWP Plugin <= 1.1.26 - Cross Site Scripti… |
Imran Tauqeer |
CubeWP |
2025-09-22T18:25:58.616Z | 2026-04-28T16:13:52.675Z |
| cve-2025-59567 | 4.3 (v3.1) | WordPress Coupon Affiliates Plugin <= 6.8.0 - Broken A… |
Elliot Sowersby / RelyWP |
Coupon Affiliates |
2025-09-22T18:26:00.403Z | 2026-04-28T16:13:52.619Z |
| cve-2025-59562 | 5.5 (v3.1) | WordPress Academy LMS Plugin <= 3.3.4 - Insecure Direc… |
Kodezen LLC |
Academy LMS |
2025-09-22T18:26:02.167Z | 2026-04-28T16:13:52.612Z |
| cve-2025-59559 | 4.3 (v3.1) | WordPress Payrexx Payment Gateway for WooCommerce Plug… |
payrexx |
Payrexx Payment Gateway for WooCommerce |
2025-09-22T18:26:04.049Z | 2026-04-28T16:13:52.595Z |
| cve-2025-59561 | 4.3 (v3.1) | WordPress Smart Blocks Plugin <= 2.4 - Broken Access C… |
hashthemes |
Smart Blocks |
2025-09-22T18:26:03.149Z | 2026-04-28T16:13:52.522Z |
| cve-2025-59565 | 6.5 (v3.1) | WordPress Upsell Order Bump Offer for WooCommerce Plug… |
WP Swings |
Upsell Order Bump Offer for WooCommerce |
2025-09-22T18:26:01.225Z | 2026-04-28T16:13:52.513Z |
| cve-2025-59566 | 7.7 (v3.1) | WordPress Workreap (theme's plugin) plugin <= 3.3.5 - … |
AmentoTech |
Workreap (theme's plugin) |
2025-10-22T14:32:38.405Z | 2026-04-28T16:13:52.478Z |
| cve-2025-59557 | 9.3 (v3.1) | WordPress Learts Addons Plugin < 1.7.5 - SQL Injection… |
ThemeMove |
Learts Addons |
2025-10-22T14:32:37.757Z | 2026-04-28T16:13:52.432Z |
| cve-2025-59553 | 6.5 (v3.1) | WordPress Custom iFrame for Elementor Plugin <= 1.0.13… |
Coderz Studio |
Custom iFrame for Elementor |
2025-09-22T18:26:04.754Z | 2026-04-28T16:13:52.258Z |
| cve-2025-59552 | 6.5 (v3.1) | WordPress Save as PDF Plugin <= 4.5.2 - Cross Site Scr… |
Pdfcrowd Dev Team |
Save as PDF |
2025-09-22T18:26:05.516Z | 2026-04-28T16:13:52.230Z |
| cve-2025-59138 | 4.9 (v3.1) | WordPress Genemy theme <= 1.6.6 - Server Side Request … |
Jthemes |
Genemy |
2025-12-31T17:03:59.500Z | 2026-04-28T16:13:52.226Z |
| cve-2025-59549 | 6.5 (v3.1) | WordPress GetResponse Forms Plugin <= 2.6.0 - Cross Si… |
fatcatapps |
GetResponse Forms |
2025-09-22T18:26:06.917Z | 2026-04-28T16:13:52.205Z |
| cve-2025-59551 | 4.3 (v3.1) | WordPress Revive.so Plugin <= 2.0.6 - Broken Access Co… |
WP Chill |
Revive.so |
2025-09-22T18:26:06.203Z | 2026-04-28T16:13:52.204Z |
| cve-2025-59137 | 7.1 (v3.1) | WordPress Behance Portfolio Manager plugin <= 1.7.5 - … |
eleopard |
Behance Portfolio Manager |
2025-12-31T04:33:22.492Z | 2026-04-28T16:13:52.156Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-528 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2022-06-09T00:00:00.000000 | 2022-06-09T00:00:00.000000 |
| certfr-2022-avi-527 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-06-08T00:00:00.000000 | 2022-06-08T00:00:00.000000 |
| certfr-2022-avi-526 | Multiples vulnérabilités dans les produits IBM | 2022-06-08T00:00:00.000000 | 2022-06-08T00:00:00.000000 |
| certfr-2022-avi-525 | Multiples vulnérabilités dans les produits Fortinet | 2022-06-08T00:00:00.000000 | 2022-06-08T00:00:00.000000 |
| certfr-2022-avi-524 | Multiples vulnérabilités dans Google Android | 2022-06-07T00:00:00.000000 | 2022-06-07T00:00:00.000000 |
| certfr-2022-avi-523 | Multiples vulnérabilités dans les produits IBM | 2022-06-07T00:00:00.000000 | 2022-06-07T00:00:00.000000 |
| certfr-2022-avi-522 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-06-07T00:00:00.000000 | 2022-06-07T00:00:00.000000 |
| certfr-2022-avi-427 | Multiples vulnérabilités dans Foxit PDF Reader et Foxit PDF Editor | 2022-05-09T00:00:00.000000 | 2022-06-07T00:00:00.000000 |
| certfr-2022-avi-521 | Vulnérabilité dans Atlassian Confluence | 2022-06-03T00:00:00.000000 | 2022-06-03T00:00:00.000000 |
| certfr-2022-avi-520 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-06-03T00:00:00.000000 | 2022-06-03T00:00:00.000000 |
| certfr-2022-avi-519 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-06-03T00:00:00.000000 | 2022-06-03T00:00:00.000000 |
| certfr-2022-avi-518 | Vulnérabilité dans Nextcloud richdocuments | 2022-06-03T00:00:00.000000 | 2022-06-03T00:00:00.000000 |
| certfr-2022-avi-517 | Multiples vulnérabilités dans GitLab | 2022-06-02T00:00:00.000000 | 2022-06-02T00:00:00.000000 |
| certfr-2022-avi-511 | Multiples vulnérabilités dans Mozilla Firefox | 2022-06-01T00:00:00.000000 | 2022-06-02T00:00:00.000000 |
| certfr-2022-avi-516 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-06-01T00:00:00.000000 | 2022-06-01T00:00:00.000000 |
| certfr-2022-avi-515 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2022-06-01T00:00:00.000000 | 2022-06-01T00:00:00.000000 |
| certfr-2022-avi-514 | Multiples vulnérabilités dans Microsoft Edge | 2022-06-01T00:00:00.000000 | 2022-06-01T00:00:00.000000 |
| certfr-2022-avi-513 | Multiples vulnérabilités dans Google Chrome | 2022-06-01T00:00:00.000000 | 2022-06-01T00:00:00.000000 |
| certfr-2022-avi-512 | Multiples vulnérabilités dans Mozilla Thunderbird | 2022-06-01T00:00:00.000000 | 2022-06-01T00:00:00.000000 |
| certfr-2022-avi-510 | Multiples vulnérabilités dans IBM QRadar | 2022-06-01T00:00:00.000000 | 2022-06-01T00:00:00.000000 |
| certfr-2022-avi-509 | Vulnérabilité dans Elasticsearch | 2022-05-31T00:00:00.000000 | 2022-05-31T00:00:00.000000 |
| certfr-2022-avi-508 | Vulnérabilité dans Nextcloud Server | 2022-05-30T00:00:00.000000 | 2022-05-30T00:00:00.000000 |
| certfr-2022-avi-507 | Vulnérabilité dans Grafana | 2022-05-30T00:00:00.000000 | 2022-05-30T00:00:00.000000 |
| certfr-2022-avi-506 | Multiples vulnérabilités dans Ruby on Rails | 2022-05-30T00:00:00.000000 | 2022-05-30T00:00:00.000000 |
| certfr-2022-avi-505 | Multiples vulnérabilités dans Google Chrome OS | 2022-05-30T00:00:00.000000 | 2022-05-30T00:00:00.000000 |
| certfr-2022-avi-504 | Multiples vulnérabilités dans Tenable Nessus | 2022-05-27T00:00:00.000000 | 2022-05-27T00:00:00.000000 |
| certfr-2022-avi-503 | Vulnérabilité dans QNAP Proxy Server | 2022-05-27T00:00:00.000000 | 2022-05-27T00:00:00.000000 |
| certfr-2022-avi-502 | Vulnérabilité dans les produits F-Secure | 2022-05-27T00:00:00.000000 | 2022-05-27T00:00:00.000000 |
| certfr-2022-avi-501 | Vulnérabilité dans Drupal Core | 2022-05-27T00:00:00.000000 | 2022-05-27T00:00:00.000000 |
| certfr-2022-avi-500 | Vulnérabilité dans le client ownCloud Desktop | 2022-05-27T00:00:00.000000 | 2022-05-27T00:00:00.000000 |