Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-49918 | 5.9 (v3.1) | WordPress VikBooking Hotel Booking Engine & PMS plugin… |
e4jvikwp |
VikBooking Hotel Booking Engine & PMS |
2025-12-18T07:21:44.067Z | 2026-04-28T16:13:07.897Z |
| cve-2025-49913 | 5.3 (v3.1) | WordPress CoSchedule plugin <= 3.4.0 - Broken Access C… |
CoSchedule |
CoSchedule |
2025-10-22T14:32:11.977Z | 2026-04-28T16:13:07.838Z |
| cve-2025-49920 | 5.4 (v3.1) | WordPress Web Accessibility By accessiBe plugin <= 2.1… |
accessiBe |
Web Accessibility By accessiBe |
2025-10-22T14:32:12.844Z | 2026-04-28T16:13:07.817Z |
| cve-2025-49907 | 4.3 (v3.1) | WordPress MDTF plugin <= 1.3.3.9 - Broken Access Contr… |
RealMag777 |
MDTF |
2025-10-22T14:32:10.614Z | 2026-04-28T16:13:07.579Z |
| cve-2025-49909 | 7.1 (v3.1) | WordPress Penci Bookmark & Follow plugin < 2.4 - Cross… |
PenciDesign |
Penci Bookmark & Follow |
2025-11-06T15:53:56.279Z | 2026-04-28T16:13:07.554Z |
| cve-2025-49906 | 5.3 (v3.1) | WordPress WPComplete plugin <= 2.9.5.3 - Broken Access… |
StellarWP |
WPComplete |
2025-10-22T14:32:10.402Z | 2026-04-28T16:13:07.508Z |
| cve-2025-49903 | 5.3 (v3.1) | WordPress ZoloBlocks plugin <= 2.3.11 - Broken Access … |
bdthemes |
ZoloBlocks |
2025-10-22T14:32:10.215Z | 2026-04-28T16:13:07.504Z |
| cve-2025-49894 | 8.1 (v3.1) | WordPress Nuss Theme <= 1.3.3 - Local File Inclusion V… |
uxper |
Nuss |
2025-08-20T08:03:36.141Z | 2026-04-28T16:13:07.429Z |
| cve-2025-49905 | 7.1 (v3.1) | WordPress Range Slider Addon for Gravity Forms plugin … |
PluginsCafe |
Range Slider Addon for Gravity Forms |
2025-11-06T15:53:55.700Z | 2026-04-28T16:13:07.390Z |
| cve-2025-49898 | 7.6 (v3.1) | WordPress Dropshix plugin <= 4.0.14 - Cross Site Scrip… |
Xolluteon |
Dropshix |
2025-08-15T15:41:55.857Z | 2026-04-28T16:13:07.386Z |
| cve-2025-49902 | 6.5 (v3.1) | WordPress Login Page Customizer – Customizer Login Pag… |
A WP Life |
Login Page Customizer – Customizer Login Page, Admin Page, Custom Design |
2025-12-18T07:21:43.721Z | 2026-04-28T16:13:07.352Z |
| cve-2025-49893 | 7.1 (v3.1) | WordPress Nuss Theme <= 1.3.3 - Cross Site Scripting (… |
uxper |
Nuss |
2025-08-20T08:03:36.738Z | 2026-04-28T16:13:07.341Z |
| cve-2025-49897 | 8.8 (v3.1) | WordPress Vertical scroll slideshow gallery v2 plugin … |
gopiplus |
Vertical scroll slideshow gallery v2 |
2025-08-15T15:13:13.206Z | 2026-04-28T16:13:07.336Z |
| cve-2025-49899 | 5.3 (v3.1) | WordPress Whydonate plugin <= 4.0.15 - Broken Access C… |
jjlemstra |
Whydonate |
2025-10-22T14:32:09.852Z | 2026-04-28T16:13:07.332Z |
| cve-2025-49896 | 5.3 (v3.1) | WordPress WP Discord Post Plus – Supports Unlimited C… |
wptasker |
WP Discord Post Plus – Supports Unlimited Channels |
2025-08-20T08:03:35.576Z | 2026-04-28T16:13:07.331Z |
| cve-2025-49895 | 6.5 (v3.1) | WordPress ServerBuddy by PluginBuddy.com plugin <= 1.0… |
iThemes |
ServerBuddy by PluginBuddy.com |
2025-08-16T02:34:50.784Z | 2026-04-28T16:13:07.331Z |
| cve-2025-49891 | 8.5 (v3.1) | WordPress Uxper Booking Plugin <= 1.3.3 - SQL Injectio… |
uxper |
Uxper Booking |
2025-08-20T08:03:37.807Z | 2026-04-28T16:13:07.321Z |
| cve-2025-49890 | 9.8 (v3.1) | WordPress Organic Beauty Theme <= 1.4.6 - PHP Object I… |
ThemeREX |
Organic Beauty |
2025-08-20T08:03:38.386Z | 2026-04-28T16:13:07.320Z |
| cve-2025-49904 | 7.1 (v3.1) | WordPress Booking and Rental Manager plugin <= 2.5.3 -… |
magepeopleteam |
Booking and Rental Manager |
2025-11-06T15:53:55.162Z | 2026-04-28T16:13:07.311Z |
| cve-2025-49892 | 8.1 (v3.1) | WordPress Uxper Booking Plugin <= 1.3.3 - Local File I… |
uxper |
Uxper Booking |
2025-08-20T08:03:37.294Z | 2026-04-28T16:13:07.266Z |
| cve-2025-49888 | 7.1 (v3.1) | WordPress PW WooCommerce On Sale! plugin <= 1.39 - Bro… |
pimwick |
PW WooCommerce On Sale! |
2025-07-16T11:27:57.729Z | 2026-04-28T16:13:07.129Z |
| cve-2025-49889 | 8.1 (v3.1) | WordPress Edge CPT plugin <= 1.4 - Local File Inclusio… |
Edge-Themes |
Edge CPT |
2025-08-20T08:03:38.918Z | 2026-04-28T16:13:07.124Z |
| cve-2025-49886 | 8.1 (v3.1) | WordPress Zikzag Core plugin <= 1.4.5 - Local File Inc… |
WebGeniusLab |
Zikzag Core |
2025-06-27T11:52:30.232Z | 2026-04-28T16:13:07.087Z |
| cve-2025-49887 | 9.9 (v3.1) | WordPress Product XML Feed Manager for WooCommerce Plu… |
WPFactory |
Product XML Feed Manager for WooCommerce |
2025-08-14T10:34:06.810Z | 2026-04-28T16:13:07.077Z |
| cve-2025-49885 | 10 (v3.1) | WordPress Drag and Drop Multiple File Upload (Pro) - W… |
HaruTheme |
Drag and Drop Multiple File Upload (Pro) - WooCommerce |
2025-06-27T11:52:30.847Z | 2026-04-28T16:13:07.016Z |
| cve-2025-49882 | 6.5 (v3.1) | WordPress CubeWP Framework plugin <= 1.1.23 - Cross Si… |
Imran Tauqeer |
CubeWP |
2025-06-17T15:01:12.192Z | 2026-04-28T16:13:06.970Z |
| cve-2025-49881 | 6.5 (v3.1) | WordPress Responsive Blocks plugin <= 2.0.5 - Cross Si… |
CyberChimps |
Responsive Blocks |
2025-06-17T15:01:12.665Z | 2026-04-28T16:13:06.752Z |
| cve-2025-49873 | 7.1 (v3.1) | WordPress Elessi theme <= 6.3.9 - Cross Site Scripting… |
NasaTheme |
Elessi |
2025-06-20T15:04:30.054Z | 2026-04-28T16:13:06.738Z |
| cve-2025-49884 | 6.5 (v3.1) | WordPress Internal Linking of Related Contents plugin … |
alexvtn |
Internal Linking of Related Contents |
2025-07-16T11:27:58.254Z | 2026-04-28T16:13:06.734Z |
| cve-2025-49875 | 6.5 (v3.1) | WordPress If-So Dynamic Content Personalization plugin… |
If-So Dynamic Content |
If-So Dynamic Content Personalization |
2025-06-17T15:01:15.065Z | 2026-04-28T16:13:06.724Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-098 | Multiples vulnérabilités dans Apple macOS | 2021-02-10T00:00:00.000000 | 2021-02-10T00:00:00.000000 |
| certfr-2021-avi-097 | Multiples vulnérabilités dans Google Chrome OS | 2021-02-10T00:00:00.000000 | 2021-02-10T00:00:00.000000 |
| certfr-2021-avi-096 | Multiples vulnérabilités dans les produits Schneider Electric | 2021-02-10T00:00:00.000000 | 2021-02-10T00:00:00.000000 |
| certfr-2021-avi-095 | Vulnérabilité dans Belden ICX35 | 2021-02-09T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| certfr-2021-avi-094 | Multiples vulnérabilités dans les produits Siemens | 2021-02-09T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| certfr-2021-avi-093 | Multiples vulnérabilités dans SolarWinds Serv-U File Server | 2021-02-09T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| certfr-2021-avi-092 | Multiples vulnérabilités dans les produits SAP | 2021-02-09T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| certfr-2021-avi-091 | Vulnérabilité dans Mozilla Firefox et Firefox ESR | 2021-02-08T00:00:00.000000 | 2021-02-08T00:00:00.000000 |
| certfr-2021-avi-090 | Multiples vulnérabilités dans les produits Aruba | 2021-02-08T00:00:00.000000 | 2021-02-08T00:00:00.000000 |
| certfr-2021-avi-089 | Vulnérabilité dans Microsoft Edge | 2021-02-08T00:00:00.000000 | 2021-02-08T00:00:00.000000 |
| certfr-2021-avi-088 | Vulnérabilité dans Google Chrome | 2021-02-05T00:00:00.000000 | 2021-02-05T00:00:00.000000 |
| certfr-2021-avi-087 | Multiples vulnérabilités dans Microsoft Edge | 2021-02-05T00:00:00.000000 | 2021-02-05T00:00:00.000000 |
| certfr-2021-avi-086 | Vulnérabilité dans Citrix Hypervisor | 2021-02-05T00:00:00.000000 | 2021-02-05T00:00:00.000000 |
| certfr-2021-avi-085 | Multiples vulnérabilités dans les produits Trend Micro | 2021-02-05T00:00:00.000000 | 2021-02-05T00:00:00.000000 |
| certfr-2021-avi-084 | Multiples vulnérabilités dans PHP | 2021-02-05T00:00:00.000000 | 2021-02-05T00:00:00.000000 |
| certfr-2021-avi-083 | Vulnérabilité dans SonicWall SMA100 | 2021-02-04T00:00:00.000000 | 2021-02-04T00:00:00.000000 |
| certfr-2021-avi-082 | Multiples vulnérabilités dans les produits Cisco | 2021-02-04T00:00:00.000000 | 2021-02-04T00:00:00.000000 |
| certfr-2021-avi-081 | Vulnérabilité dans IBM WebSphere | 2021-02-04T00:00:00.000000 | 2021-02-04T00:00:00.000000 |
| certfr-2021-avi-080 | Multiples vulnérabilités dans les produits Fortinet | 2021-02-04T00:00:00.000000 | 2021-02-04T00:00:00.000000 |
| certfr-2021-avi-079 | Vulnérabilité dans Belden Hirschmann RSP, RSPE et OS2 | 2021-02-03T00:00:00.000000 | 2021-02-03T00:00:00.000000 |
| certfr-2021-avi-078 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-02-03T00:00:00.000000 | 2021-02-03T00:00:00.000000 |
| certfr-2021-avi-077 | Multiples vulnérabilités dans le noyau Linux de Debian | 2021-02-03T00:00:00.000000 | 2021-02-03T00:00:00.000000 |
| certfr-2021-avi-076 | Multiples vulnérabilités dans Google Chrome | 2021-02-03T00:00:00.000000 | 2021-02-03T00:00:00.000000 |
| certfr-2021-avi-075 | Multiples vulnérabilités dans GitLab | 2021-02-03T00:00:00.000000 | 2021-02-03T00:00:00.000000 |
| certfr-2021-avi-074 | Vulnérabilité dans Tenable Nessus AMI | 2021-02-03T00:00:00.000000 | 2021-02-03T00:00:00.000000 |
| certfr-2021-avi-073 | Vulnérabilité dans Foxit PhantomPDF et Reader | 2021-02-02T00:00:00.000000 | 2021-02-02T00:00:00.000000 |
| certfr-2021-avi-072 | Multiples vulnérabilités dans les produits Apple | 2021-02-02T00:00:00.000000 | 2021-02-02T00:00:00.000000 |
| certfr-2021-avi-071 | Multiples vulnérabilités dans Google Android | 2021-02-02T00:00:00.000000 | 2021-02-02T00:00:00.000000 |
| certfr-2021-avi-070 | Vulnérabilité dans Libgcrypt | 2021-02-01T00:00:00.000000 | 2021-02-02T00:00:00.000000 |
| certfr-2021-avi-069 | Multiples vulnérabilités dans Wireshark | 2021-02-01T00:00:00.000000 | 2021-02-01T00:00:00.000000 |