Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-4330 | Blog2Social: Social Media Auto Post & Scheduler <= 8.8… |
pr-gateway |
Blog2Social: Social Media Auto Post & Scheduler |
2026-04-08T07:43:03.247Z | 2026-04-08T17:32:59.960Z | |
| cve-2026-4654 | Awesome Support <= 6.3.7 - Authenticated (Subscriber+)… |
awesomesupport |
Awesome Support – WordPress HelpDesk & Support Plugin |
2026-04-08T07:43:02.627Z | 2026-04-08T18:50:47.666Z | |
| cve-2026-4655 | Element Pack Addons for Elementor <= 8.4.2 - Authentic… |
bdthemes |
Element Pack – Widgets, Templates & Addons for Elementor |
2026-04-08T07:43:00.898Z | 2026-04-08T16:34:12.756Z | |
| cve-2026-4483 | 7 (v4.0) | An exposed IOCTL with an insufficient access con… |
Moxa |
MxGeneralIo |
2026-04-08T07:25:03.348Z | 2026-04-08T13:53:26.094Z |
| cve-2025-1794 | AM LottiePlayer <= 3.6.0 - Authenticated (Author+) Sto… |
johanaarstein |
AM LottiePlayer |
2026-04-08T06:43:43.700Z | 2026-04-08T17:31:54.482Z | |
| cve-2026-3781 | Attendance Manager <= 0.6.2 - Authenticated (Subscribe… |
tnomi |
Attendance Manager |
2026-04-08T06:43:43.314Z | 2026-04-08T17:31:41.656Z | |
| cve-2026-4141 | Quran Translations <= 1.7 - Cross-Site Request Forgery… |
edckwt |
Quran Translations |
2026-04-08T06:43:42.869Z | 2026-04-08T17:29:19.724Z | |
| cve-2026-2838 | Whole Enquiry Cart for WooCommerce <= 1.2.1 - Authenti… |
idealwebdesignlk |
Whole Enquiry Cart for WooCommerce |
2026-04-08T06:43:42.488Z | 2026-04-13T15:15:09.983Z | |
| cve-2026-5506 | Wavr <= 0.2.6 - Authenticated (Contributor+) Stored Cr… |
lucascaro |
Wavr |
2026-04-08T06:43:42.081Z | 2026-04-08T17:26:54.613Z | |
| cve-2026-3618 | Columns by BestWebSoft <= 1.0.3 - Authenticated (Contr… |
bestweblayout |
Columns by BestWebSoft – Additional Columns Plugin for Posts Pages and Widgets |
2026-04-08T06:43:41.698Z | 2026-04-13T15:15:10.158Z | |
| cve-2026-5167 | Masteriyo LMS <= 2.1.7 - Unauthenticated Authorization… |
masteriyo |
Masteriyo LMS – Online Course Builder for eLearning, LMS & Education |
2026-04-08T06:43:41.319Z | 2026-04-08T17:17:31.736Z | |
| cve-2026-3477 | PZ Frontend Manager <= 1.0.6 - Missing Authorization t… |
projectzealous01 |
PZ Frontend Manager |
2026-04-08T06:43:40.933Z | 2026-04-08T17:06:50.399Z | |
| cve-2026-5508 | WowPress <= 1.0.0 - Authenticated (Contributor+) Store… |
theyeti |
WowPress |
2026-04-08T06:43:40.553Z | 2026-04-08T17:05:25.368Z | |
| cve-2026-4808 | Gerador de Certificados – DevApps <= 1.3.6 - Authentic… |
tidevapps |
Gerador de Certificados – DevApps |
2026-04-08T06:43:40.185Z | 2026-04-08T17:04:59.542Z | |
| cve-2026-3142 | Pinterest Site Verification plugin using Meta Tag <= 1… |
uniquecodergmailcom |
Pinterest Site Verification plugin using Meta Tag |
2026-04-08T06:43:39.812Z | 2026-04-08T17:02:45.964Z | |
| cve-2026-5169 | Inquiry form to posts or pages <= 1.0 - Authenticated … |
udamadu |
Inquiry form to posts or pages |
2026-04-08T06:43:39.394Z | 2026-04-13T15:15:10.337Z | |
| cve-2026-3535 | DSGVO Google Web Fonts GDPR <= 1.1 - Unauthenticated A… |
mlfactory |
DSGVO Google Web Fonts GDPR |
2026-04-08T06:43:38.955Z | 2026-04-08T18:04:51.531Z | |
| cve-2026-3480 | WP Blockade <= 0.9.14 - Missing Authorization to Authe… |
burlingtonbytes |
WP Blockade – Visual Page Builder |
2026-04-08T06:43:38.560Z | 2026-04-08T16:48:07.477Z | |
| cve-2026-4871 | Sports Club Management <= 1.12.9 - Authenticated (Cont… |
pstruik |
Sports Club Management |
2026-04-08T06:43:38.173Z | 2026-04-08T18:54:20.614Z | |
| cve-2026-3594 | Riaxe Product Customizer <= 2.4 - Unauthenticated Sens… |
imprintnext |
Riaxe Product Customizer |
2026-04-08T06:43:37.586Z | 2026-04-08T16:44:44.782Z | |
| cve-2026-4338 | N/A | ActivityPub Routing < 8.0.2 - Unauthenticated Drafts/S… |
Unknown |
ActivityPub |
2026-04-08T06:00:08.001Z | 2026-04-08T16:06:53.365Z |
| cve-2026-5083 | N/A | Ado::Sessions versions through 0.935 for Perl generate… |
BEROV |
Ado::Sessions |
2026-04-08T05:53:16.963Z | 2026-04-08T17:24:13.917Z |
| cve-2026-5082 | N/A | Amon2::Plugin::Web::CSRFDefender versions from 7.00 th… |
TOKUHIROM |
Amon2::Plugin::Web::CSRFDefender |
2026-04-08T05:48:43.633Z | 2026-04-08T16:09:26.357Z |
| cve-2026-3311 | The Plus Addons for Elementor – Addons for Elementor, … |
posimyththemes |
The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce |
2026-04-08T05:28:59.702Z | 2026-04-08T17:55:51.767Z | |
| cve-2026-27787 | 5.4 (v3.0) 5.1 (v4.0) | Cross-site scripting vulnerability exists in MATC… |
ICZ Corporation |
MATCHA SNS |
2026-04-08T05:11:11.154Z | 2026-04-08T13:55:07.158Z |
| cve-2026-33273 | 4.7 (v3.0) 5.1 (v4.0) | Unrestricted upload of file with dangerous type i… |
ICZ Corporation |
MATCHA INVOICE |
2026-04-08T05:11:03.549Z | 2026-04-08T15:05:25.194Z |
| cve-2026-24913 | 8.8 (v3.0) 8.7 (v4.0) | SQL Injection vulnerability exists in MATCHA INVO… |
ICZ Corporation |
MATCHA INVOICE |
2026-04-08T05:10:12.155Z | 2026-04-08T15:06:29.082Z |
| cve-2026-3239 | Strong Testimonials <= 3.2.21 - Authenticated (Contrib… |
wpchill |
Strong Testimonials |
2026-04-08T04:27:16.978Z | 2026-04-08T17:05:19.972Z | |
| cve-2026-3600 | Investi <= 1.0.26 - Authenticated (Contributor+) Store… |
investi |
Investi |
2026-04-08T04:27:16.381Z | 2026-04-08T16:52:34.895Z | |
| cve-2026-3646 | LTL Freight Quotes – R+L Carriers Edition <= 3.3.13 - … |
enituretechnology |
LTL Freight Quotes – R+L Carriers Edition |
2026-04-08T03:36:10.023Z | 2026-04-08T18:44:13.532Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-339 | Vulnérabilité dans Synology DNS Server | 2022-04-14T00:00:00.000000 | 2022-04-14T00:00:00.000000 |
| certfr-2022-avi-338 | Multiples vulnérabilités dans les produits Cisco | 2022-04-14T00:00:00.000000 | 2022-04-14T00:00:00.000000 |
| certfr-2022-avi-337 | Multiples vulnérabilités dans les produits Microsoft | 2022-04-13T00:00:00.000000 | 2022-04-13T00:00:00.000000 |
| certfr-2022-avi-336 | Multiples vulnérabilités dans Microsoft .Net | 2022-04-13T00:00:00.000000 | 2022-04-13T00:00:00.000000 |
| certfr-2022-avi-335 | Multiples vulnérabilités dans Microsoft Windows | 2022-04-13T00:00:00.000000 | 2022-04-13T00:00:00.000000 |
| certfr-2022-avi-334 | Multiples vulnérabilités dans Microsoft Office | 2022-04-13T00:00:00.000000 | 2022-04-13T00:00:00.000000 |
| certfr-2022-avi-333 | Multiples vulnérabilités dans les produits Adobe | 2022-04-13T00:00:00.000000 | 2022-04-13T00:00:00.000000 |
| certfr-2022-avi-332 | Vulnérabilité dans Apache Struts | 2022-04-13T00:00:00.000000 | 2022-04-19T00:00:00.000000 |
| certfr-2022-avi-331 | Multiples vulnérabilités dans les produits Citrix | 2022-04-13T00:00:00.000000 | 2022-04-13T00:00:00.000000 |
| certfr-2022-avi-330 | Multiples vulnérabilités dans Stormshield Network Security | 2022-04-13T00:00:00.000000 | 2022-04-13T00:00:00.000000 |
| certfr-2022-avi-329 | Multiples vulnérabilités dans les produits SIEMENS | 2022-04-12T00:00:00.000000 | 2022-04-12T00:00:00.000000 |
| certfr-2022-avi-328 | Multiples vulnérabilités dans les produits Schneider | 2022-04-12T00:00:00.000000 | 2022-04-12T00:00:00.000000 |
| certfr-2022-avi-327 | Multiples vulnérabilités dans Google Chrome | 2022-04-12T00:00:00.000000 | 2022-04-12T00:00:00.000000 |
| certfr-2022-avi-326 | Multiples vulnérabilités dans les produits SolarWinds | 2022-04-11T00:00:00.000000 | 2022-04-12T00:00:00.000000 |
| certfr-2022-avi-325 | Multiples vulnérabilités dans Google Chrome OS | 2022-04-11T00:00:00.000000 | 2022-04-11T00:00:00.000000 |
| certfr-2022-avi-324 | Multiples vulnérabilités dans les produits QNAP | 2022-04-08T00:00:00.000000 | 2022-04-08T00:00:00.000000 |
| certfr-2022-avi-323 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-04-08T00:00:00.000000 | 2022-04-08T00:00:00.000000 |
| certfr-2022-avi-322 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2022-04-08T00:00:00.000000 | 2022-04-08T00:00:00.000000 |
| certfr-2022-avi-321 | Vulnérabilité dans Microsoft Edge | 2022-04-08T00:00:00.000000 | 2022-04-08T00:00:00.000000 |
| certfr-2022-avi-320 | Multiples vulnérabilités dans Tenable Tenable.sc | 2022-04-07T00:00:00.000000 | 2022-04-07T00:00:00.000000 |
| certfr-2022-avi-319 | Vulnérabilité dans Stormshield Endpoint Security | 2022-04-07T00:00:00.000000 | 2022-04-07T00:00:00.000000 |
| certfr-2022-avi-318 | Multiples vulnérabilités dans les produits VMware | 2022-04-07T00:00:00.000000 | 2022-04-07T00:00:00.000000 |
| certfr-2022-avi-317 | Vulnérabilité dans Citrix Hypervisor | 2022-04-07T00:00:00.000000 | 2022-04-07T00:00:00.000000 |
| certfr-2022-avi-316 | Multiples vulnérabilités dans Mozilla Thunderbird | 2022-04-07T00:00:00.000000 | 2022-04-07T00:00:00.000000 |
| certfr-2022-avi-315 | Multiples vulnérabilités dans Cisco Data Center Network Manager | 2022-04-06T00:00:00.000000 | 2022-04-06T00:00:00.000000 |
| certfr-2022-avi-314 | Multiples vulnérabilités dans Xen | 2022-04-06T00:00:00.000000 | 2022-04-06T00:00:00.000000 |
| certfr-2022-avi-313 | Multiples vulnérabilités dans les commutateurs Aruba Instant On 1930 | 2022-04-06T00:00:00.000000 | 2022-04-06T00:00:00.000000 |
| certfr-2022-avi-312 | Multiples vulnérabilités dans les produits Fortinet | 2022-04-06T00:00:00.000000 | 2022-04-06T00:00:00.000000 |
| certfr-2022-avi-311 | Multiples vulnérabilités dans Mozilla Firefox et Firefox ESR | 2022-04-06T00:00:00.000000 | 2022-04-06T00:00:00.000000 |
| certfr-2022-avi-310 | Vulnérabilité dans le client ownCloud pour Android | 2022-04-05T00:00:00.000000 | 2022-04-05T00:00:00.000000 |