Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-49443 | 6.5 (v3.1) | WordPress Bacon Ipsum plugin <= 2.4 - Cross Site Scrip… |
Chris McCoy |
Bacon Ipsum |
2025-06-06T12:54:47.442Z | 2026-04-28T16:13:04.870Z |
| cve-2025-49448 | 8.6 (v3.1) | WordPress FW Food Menu plugin <= 6.0.0 - Arbitrary Fi… |
Fastw3b LLC |
FW Food Menu |
2025-06-27T11:52:08.831Z | 2026-04-28T16:13:04.869Z |
| cve-2025-49434 | 9.8 (v3.1) | WordPress Cars4Rent Theme <= 1.4.2 - PHP Object Inject… |
axiomthemes |
Cars4Rent |
2025-08-20T08:03:40.552Z | 2026-04-28T16:13:04.864Z |
| cve-2025-49430 | 7.2 (v3.1) | WordPress Ultimate Video Player Plugin <= 10.1 - Serve… |
FWDesign |
Ultimate Video Player |
2025-09-09T16:26:03.584Z | 2026-04-28T16:13:04.761Z |
| cve-2025-49438 | 8.1 (v3.1) | WordPress Simple Login Log plugin <= 1.1.3 - PHP Objec… |
Max Chirkov |
Simple Login Log |
2025-08-20T08:03:39.479Z | 2026-04-28T16:13:04.757Z |
| cve-2025-49431 | 6.5 (v3.1) | WordPress MF Plus WPML plugin <= 1.1 - Settings Change… |
Gnuget |
MF Plus WPML |
2025-07-04T11:17:48.158Z | 2026-04-28T16:13:04.709Z |
| cve-2025-49429 | 6.5 (v3.1) | WordPress Video Embeds plugin <= 0.1.1 - Cross Site Sc… |
Ryan Burnette |
Video Embeds |
2025-06-06T12:54:50.375Z | 2026-04-28T16:13:04.707Z |
| cve-2025-49432 | 5.3 (v3.1) | WordPress Ultimate Video Player Plugin <= 10.1 - Broke… |
FWDesign |
Ultimate Video Player |
2025-08-15T15:13:13.782Z | 2026-04-28T16:13:04.575Z |
| cve-2025-49426 | 8.1 (v3.1) | WordPress Kitring Theme <= 2.8 - Local File Inclusion … |
Dahz |
Kitring |
2025-08-20T08:03:41.692Z | 2026-04-28T16:13:04.364Z |
| cve-2025-49427 | 6.5 (v3.1) | WordPress Abbie Expander plugin <= 1.0.1 - Cross Site … |
Ryan Burnette |
Abbie Expander |
2025-06-06T12:54:50.836Z | 2026-04-28T16:13:04.349Z |
| cve-2025-49428 | 7.5 (v3.1) | WordPress Cookie Warning plugin <= 1.3 - Cross Site Sc… |
Dourou |
Cookie Warning |
2025-08-20T08:03:41.172Z | 2026-04-28T16:13:04.328Z |
| cve-2025-49422 | 9.8 (v3.1) | WordPress Support Ticket Plugin <= 1.9 - Privilege Esc… |
themepassion |
Support Ticket |
2025-08-20T08:03:43.024Z | 2026-04-28T16:13:04.295Z |
| cve-2025-49424 | 7.1 (v3.1) | WordPress Support Ticket Plugin <= 1.9 - Cross Site Sc… |
themepassion |
Support Ticket |
2025-08-20T08:03:42.325Z | 2026-04-28T16:13:04.262Z |
| cve-2025-49425 | 7.1 (v3.1) | WordPress Konami Easter Egg plugin <= v0.4 - Cross Sit… |
Adrian Hanft |
Konami Easter Egg |
2025-06-06T12:54:51.309Z | 2026-04-28T16:13:04.226Z |
| cve-2025-49420 | 7.1 (v3.1) | WordPress Ultra Portfolio - WordPress Plugin <= 6.7 - … |
themepassion |
Ultra Portfolio |
2025-08-20T08:03:43.644Z | 2026-04-28T16:13:04.220Z |
| cve-2025-49418 | 7.2 (v3.1) | WordPress Allmart plugin <= 1.0.0 - Server Side Reques… |
TeconceTheme |
Allmart |
2025-07-04T11:17:48.696Z | 2026-04-28T16:13:04.195Z |
| cve-2025-49419 | 5.5 (v3.1) | WordPress Foxit eSign for WordPress plugin <= 2.0.3 - … |
esigngenie |
Foxit eSign for WordPress |
2025-06-06T12:54:52.214Z | 2026-04-28T16:13:04.185Z |
| cve-2025-49408 | 10 (v3.1) | WordPress Templately Plugin <= 3.2.7 - Sensitive Data … |
WPDeveloper |
Templately |
2025-08-20T08:03:48.674Z | 2026-04-28T16:13:04.127Z |
| cve-2025-49417 | 9.8 (v3.1) | WordPress WooCommerce Product Multi-Action plugin <= 1… |
BestWpDeveloper |
WooCommerce Product Multi-Action |
2025-07-04T11:17:49.191Z | 2026-04-28T16:13:04.120Z |
| cve-2025-49423 | 7.1 (v3.1) | WordPress Bulk YouTube Post Creator plugin <= 1.0 - Re… |
Syed Tahir Ali Jan |
Bulk YouTube Post Creator |
2025-06-27T11:52:09.473Z | 2026-04-28T16:13:04.119Z |
| cve-2025-49421 | 7.6 (v3.1) | WordPress WP Text Expander plugin <= 1.0.1 - SQL Injec… |
Andrei Filonov |
WP Text Expander |
2025-06-06T12:54:51.748Z | 2026-04-28T16:13:04.095Z |
| cve-2025-49416 | 8.1 (v3.1) | WordPress FW Gallery plugin <= 8.0.0 - Local File Incl… |
Fastw3b LLC |
FW Gallery |
2025-06-27T11:52:10.067Z | 2026-04-28T16:13:04.076Z |
| cve-2025-49406 | 8.5 (v3.1) | WordPress Houzez Theme <= 4.1.1 - Broken Access Contro… |
favethemes |
Houzez |
2025-08-20T08:03:49.295Z | 2026-04-28T16:13:04.018Z |
| cve-2025-49409 | 9.8 (v3.1) | WordPress SensorPress plugin <= 1.0 - Cross Site Scrip… |
brewlabs |
SensorPress |
2025-08-20T08:03:46.507Z | 2026-04-28T16:13:04.000Z |
| cve-2025-49412 | 5.9 (v3.1) | WordPress Page Transition plugin <= 1.3 - Cross Site S… |
numixtech |
Page Transition |
2025-08-20T08:03:44.742Z | 2026-04-28T16:13:03.940Z |
| cve-2025-49415 | 8.6 (v3.1) | WordPress FW Gallery plugin <= 8.0.0 - Arbitrary File … |
Fastw3b LLC |
FW Gallery |
2025-06-17T15:01:11.701Z | 2026-04-28T16:13:03.935Z |
| cve-2025-49414 | 10 (v3.1) | WordPress FW Gallery plugin <= 8.0.0 - Arbitrary File … |
Fastw3b LLC |
FW Gallery |
2025-07-04T11:17:49.681Z | 2026-04-28T16:13:03.919Z |
| cve-2025-49395 | 6.5 (v3.1) | WordPress Themify Icons Plugin <= 2.0.3 - Cross Site S… |
themifyme |
Themify Icons |
2025-08-20T08:03:52.402Z | 2026-04-28T16:13:03.918Z |
| cve-2025-49405 | 4.3 (v3.1) | WordPress Houzez Theme < 4.1.4 - Local File Inclusion … |
Favethemes |
Houzez |
2025-08-28T12:37:15.723Z | 2026-04-28T16:13:03.898Z |
| cve-2025-49410 | 10 (v3.1) | WordPress TC Testimonials plugin <= 1.1.1 - Cross Site… |
Imran Emu |
TC Testimonials |
2025-08-20T08:03:45.980Z | 2026-04-28T16:13:03.895Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-012 | Vulnérabilité dans le noyau Linux d'Ubuntu | 2021-01-11T00:00:00.000000 | 2021-01-11T00:00:00.000000 |
| certfr-2021-avi-011 | Multiples vulnérabilités dans GitLab | 2021-01-08T00:00:00.000000 | 2021-01-08T00:00:00.000000 |
| certfr-2021-avi-010 | Multiples vulnérabilités dans Microsoft Edge | 2021-01-08T00:00:00.000000 | 2021-01-08T00:00:00.000000 |
| certfr-2020-avi-375 | [MàJ] Multiples vulnérabilités dans la pile TCP/IP de Treck | 2021-01-08T00:00:00.000000 | 2021-01-08T00:00:00.000000 |
| certfr-2021-avi-009 | Vulnérabilité dans PHP | 2021-01-07T00:00:00.000000 | 2021-01-07T00:00:00.000000 |
| certfr-2021-avi-008 | Multiples vulnérabilités dans Google Chrome | 2021-01-07T00:00:00.000000 | 2021-01-07T00:00:00.000000 |
| certfr-2021-avi-007 | Vulnérabilité dans Mozilla Firefox | 2021-01-07T00:00:00.000000 | 2021-01-07T00:00:00.000000 |
| certfr-2021-avi-006 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-01-06T00:00:00.000000 | 2021-01-06T00:00:00.000000 |
| certfr-2021-avi-005 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-01-06T00:00:00.000000 | 2021-01-06T00:00:00.000000 |
| certfr-2021-avi-004 | Vulnérabilité dans Bouncy Castle | 2021-01-06T00:00:00.000000 | 2021-01-06T00:00:00.000000 |
| certfr-2021-avi-003 | Multiples vulnérabilités dans les produits Fortinet | 2021-01-06T00:00:00.000000 | 2021-01-06T00:00:00.000000 |
| certfr-2021-avi-002 | Vulnérabilité dans Mitel MiCollab | 2021-01-05T00:00:00.000000 | 2021-01-05T00:00:00.000000 |
| certfr-2021-avi-001 | Multiples vulnérabilités dans Google Android | 2021-01-05T00:00:00.000000 | 2021-01-05T00:00:00.000000 |
| certfr-2020-avi-846 | Multiples vulnérabilités dans les produits QNAP | 2020-12-31T00:00:00.000000 | 2020-12-31T00:00:00.000000 |
| certfr-2020-avi-845 | Vulnérabilité dans SolarWinds Orion API | 2020-12-28T00:00:00.000000 | 2020-12-28T00:00:00.000000 |
| certfr-2020-avi-517 | Multiples vulnérabilités dans Moxa NPort IAW5000A-I/O | 2020-08-20T00:00:00.000000 | 2020-12-28T00:00:00.000000 |
| certfr-2020-avi-844 | Multiples vulnérabilités dans les produits Qnap | 2020-12-23T00:00:00.000000 | 2020-12-23T00:00:00.000000 |
| certfr-2020-avi-843 | Multiples vulnérabilités dans les produits Treck | 2020-12-23T00:00:00.000000 | 2020-12-23T00:00:00.000000 |
| certfr-2020-avi-842 | Multiples vulnérabilités dans Asterisk | 2020-12-23T00:00:00.000000 | 2020-12-23T00:00:00.000000 |
| certfr-2020-avi-841 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-12-23T00:00:00.000000 | 2020-12-23T00:00:00.000000 |
| certfr-2020-avi-840 | Multiples vulnérabilités dans Tenable Tenable.sc | 2020-12-22T00:00:00.000000 | 2020-12-22T00:00:00.000000 |
| certfr-2020-avi-839 | Multiples vulnérabilités dans Trend Micro InterScan Web Security Virtual Appliance | 2020-12-22T00:00:00.000000 | 2020-12-22T00:00:00.000000 |
| certfr-2020-avi-838 | Multiples vulnérabilités dans Aruba ArubaOS | 2020-12-21T00:00:00.000000 | 2020-12-21T00:00:00.000000 |
| certfr-2020-avi-837 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-12-21T00:00:00.000000 | 2020-12-21T00:00:00.000000 |
| certfr-2020-avi-836 | Multiples vulnérabilités dans les produits Schneider Electric | 2020-12-21T00:00:00.000000 | 2020-12-21T00:00:00.000000 |
| certfr-2020-avi-835 | Vulnérabilité dans F5 BIG-IP | 2020-12-21T00:00:00.000000 | 2020-12-21T00:00:00.000000 |
| certfr-2020-avi-834 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2020-12-21T00:00:00.000000 | 2020-12-21T00:00:00.000000 |
| certfr-2020-avi-833 | Multiples vulnérabilités dans Wireshark | 2020-12-21T00:00:00.000000 | 2020-12-21T00:00:00.000000 |
| certfr-2020-avi-832 | Multiples vulnérabilités dans F5 BIG-IP | 2020-12-18T00:00:00.000000 | 2020-12-18T00:00:00.000000 |
| certfr-2020-avi-831 | Vulnérabilité dans les produits VMware | 2020-12-18T00:00:00.000000 | 2020-12-18T00:00:00.000000 |