Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-49401 | 9.8 (v3.1) | WordPress smart SEO Plugin <= 4.0 - Privilege Escalati… |
axiomthemes |
smart SEO |
2025-09-05T16:15:40.868Z | 2026-04-28T16:13:03.429Z |
| cve-2025-49398 | 6.5 (v3.1) | WordPress Easy Appointments plugin <= 3.12.14 - Conten… |
Easy Appointments |
Easy Appointments |
2025-11-06T15:53:53.979Z | 2026-04-28T16:13:03.285Z |
| cve-2025-49399 | 8.8 (v3.1) | WordPress NEX-Forms Plugin <= 9.1.3 - Cross Site Reque… |
Basix |
NEX-Forms |
2025-08-20T08:03:50.441Z | 2026-04-28T16:13:03.180Z |
| cve-2025-49400 | 9.8 (v3.1) | WordPress WP Visitor Statistics (Real Time Traffic) Pl… |
osama.esh |
WP Visitor Statistics (Real Time Traffic) |
2025-08-20T08:03:49.869Z | 2026-04-28T16:13:03.174Z |
| cve-2025-49402 | 8.5 (v3.1) | WordPress Exertio Framework Plugin <= 1.3.3 - SQL Inje… |
scriptsbundle |
Exertio Framework |
2025-08-28T12:37:14.405Z | 2026-04-28T16:13:03.159Z |
| cve-2025-49392 | 5.9 (v3.1) | WordPress Themify Audio Dock Plugin <= 2.0.5 - Cross S… |
themifyme |
Themify Audio Dock |
2025-08-20T08:03:52.968Z | 2026-04-28T16:13:03.089Z |
| cve-2025-49381 | 9.6 (v3.1) | WordPress ads.txt Guru Connect Plugin <= 1.1.1 - Cross… |
ads.txt Guru |
ads.txt Guru Connect |
2025-08-20T08:03:55.230Z | 2026-04-28T16:13:02.928Z |
| cve-2025-49391 | 4.3 (v3.1) | WordPress Sign-up Sheets Plugin <= 2.3.3 - Cross Site … |
Fetch Designs |
Sign-up Sheets |
2025-08-20T08:03:53.490Z | 2026-04-28T16:13:02.915Z |
| cve-2025-49389 | 6.5 (v3.1) | WordPress Notice Bar Plugin <= 3.1.3 - Cross Site Scri… |
WEN Solutions |
Notice Bar |
2025-08-20T08:03:54.057Z | 2026-04-28T16:13:02.901Z |
| cve-2025-49390 | 7.1 (v3.1) | WordPress Cookie Notice & Consent plugin <= 1.6.4 - Cr… |
christophrado |
Cookie Notice & Consent |
2025-11-06T15:53:51.739Z | 2026-04-28T16:13:02.890Z |
| cve-2025-49386 | 8.8 (v3.1) | WordPress Preserve Code Formatting Plugin <= 4.0.1 - P… |
Scott Reilly |
Preserve Code Formatting |
2025-11-06T15:53:50.934Z | 2026-04-28T16:13:02.847Z |
| cve-2025-49387 | 10 (v3.1) | WordPress Drag and Drop File Upload for Elementor Form… |
add-ons.org |
Drag and Drop File Upload for Elementor Forms |
2025-08-28T12:37:13.181Z | 2026-04-28T16:13:02.831Z |
| cve-2025-49388 | 9.8 (v3.1) | WordPress Miraculous Core Plugin Plugin <= 2.0.7 - Pri… |
kamleshyadav |
Miraculous Core Plugin |
2025-08-28T12:37:13.815Z | 2026-04-28T16:13:02.828Z |
| cve-2025-49382 | 8.8 (v3.1) | WordPress JobZilla - Job Board WordPress Theme Theme <… |
DexignZone |
JobZilla - Job Board WordPress Theme |
2025-08-20T08:03:54.651Z | 2026-04-28T16:13:02.801Z |
| cve-2025-49383 | 8.1 (v3.1) | WordPress Neresa Theme <= 1.3 - Local File Inclusion V… |
CocoBasic |
Neresa |
2025-08-28T12:37:12.575Z | 2026-04-28T16:13:02.791Z |
| cve-2025-49380 | 9.8 (v3.1) | WordPress WooCommerce Vehicle Parts Finder plugin <= 3… |
wpinstinct |
WooCommerce Vehicle Parts Finder |
2025-10-22T14:32:09.626Z | 2026-04-28T16:13:02.695Z |
| cve-2025-49374 | 5.4 (v3.1) | WordPress Captcha.eu plugin <= 1.0.61 - Server Side Re… |
captcha.eu |
Captcha.eu |
2025-10-22T14:32:08.617Z | 2026-04-28T16:13:02.687Z |
| cve-2025-49377 | 6.3 (v3.1) | WordPress Hydra Booking plugin <= 1.1.9 - Broken Acces… |
Themefic |
Hydra Booking |
2025-10-22T14:32:09.195Z | 2026-04-28T16:13:02.685Z |
| cve-2025-49376 | 5.3 (v3.1) | WordPress DELUCKS SEO plugin <= 2.5.9 - Broken Access … |
DELUCKS |
DELUCKS SEO |
2025-10-22T14:32:08.837Z | 2026-04-28T16:13:02.683Z |
| cve-2025-49375 | 5.4 (v3.1) | WordPress HomeLancer theme <= 1.0.1 - Broken Access Co… |
cozythemes |
HomeLancer |
2026-01-22T16:51:43.324Z | 2026-04-28T16:13:02.680Z |
| cve-2025-49373 | 4.3 (v3.1) | WordPress Evergreen Content Poster plugin <= 1.4.5 - C… |
Evergreen Content Poster |
Evergreen Content Poster |
2025-10-22T14:32:08.403Z | 2026-04-28T16:13:02.656Z |
| cve-2025-49378 | 8.5 (v3.1) | WordPress Hydra Booking plugin <= 1.1.10 - SQL Injecti… |
Themefic |
Hydra Booking |
2025-10-22T14:32:09.452Z | 2026-04-28T16:13:02.542Z |
| cve-2025-49366 | 8.1 (v3.1) | WordPress Hanani theme <= 1.2.11 - Local File Inclusio… |
AncoraThemes |
Hanani |
2025-12-18T07:21:42.421Z | 2026-04-28T16:13:02.459Z |
| cve-2025-49360 | 8.1 (v3.1) | WordPress Militarology theme <= 1.0.15 - Local File In… |
AncoraThemes |
Militarology |
2025-12-18T07:21:41.272Z | 2026-04-28T16:13:02.207Z |
| cve-2025-49362 | 8.1 (v3.1) | WordPress Gracioza theme <= 1.0.15 - Local File Inclus… |
AncoraThemes |
Gracioza |
2025-12-18T07:21:41.688Z | 2026-04-28T16:13:02.194Z |
| cve-2025-49358 | 6.5 (v3.1) | WordPress Content Fetcher plugin <= 1.1 - Cross Site S… |
Ruhul Amin |
Content Fetcher |
2025-12-31T12:01:15.789Z | 2026-04-28T16:13:02.194Z |
| cve-2025-49349 | 5.3 (v3.1) | WordPress Reuters Direct plugin <= 3.0.0 - Broken Acce… |
Reuters News Agency |
Reuters Direct |
2025-12-31T14:48:34.082Z | 2026-04-28T16:13:02.193Z |
| cve-2025-49365 | 8.1 (v3.1) | WordPress Jack Well theme <= 1.0.14 - Local File Inclu… |
AncoraThemes |
Jack Well |
2025-12-18T07:21:42.245Z | 2026-04-28T16:13:02.173Z |
| cve-2025-49350 | 4.3 (v3.1) | WordPress Actionwear products sync plugin <= 2.3.3 - B… |
marcoingraiti |
Actionwear products sync |
2025-12-09T14:52:18.182Z | 2026-04-28T16:13:02.166Z |
| cve-2025-49353 | 7.1 (v3.1) | WordPress Noindex by Path plugin <= 1.0 - Cross Site R… |
Marcin Kijak |
Noindex by Path |
2025-12-31T05:36:42.895Z | 2026-04-28T16:13:02.165Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-801 | Multiples vulnérabilités dans les produits Schneider | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-800 | Multiples vulnérabilités dans les produits Siemens | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-799 | Multiples vulnérabilités dans les produits SAP | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-798 | Multiples vulnérabilités dans IBM Db2 | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-797 | Vulnérabilité dans Tenable Nessus | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-795 | Multiples vulnérabilités dans Google Android | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-794 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-753 | [MàJ] Multiples vulnérabilités dans Cisco Security Manager | 2020-11-17T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-793 | Multiples vulnérabilités dans QNAP QTS et QuTS hero | 2020-12-07T00:00:00.000000 | 2020-12-07T00:00:00.000000 |
| certfr-2020-avi-792 | Vulnérabilité dans Apache Tomcat | 2020-12-07T00:00:00.000000 | 2020-12-07T00:00:00.000000 |
| certfr-2020-avi-791 | Multiples vulnérabilités dans Google Chrome OS | 2020-12-04T00:00:00.000000 | 2020-12-04T00:00:00.000000 |
| certfr-2020-avi-790 | Vulnérabilité dans les produits IBM | 2020-12-03T00:00:00.000000 | 2020-12-03T00:00:00.000000 |
| certfr-2020-avi-789 | Multiples vulnérabilités dans Apple iCloud pour Windows | 2020-12-03T00:00:00.000000 | 2020-12-03T00:00:00.000000 |
| certfr-2020-avi-786 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-12-02T00:00:00.000000 | 2020-12-03T00:00:00.000000 |
| certfr-2020-avi-788 | Multiples vulnérabilités dans les produits Fortinet | 2020-12-02T00:00:00.000000 | 2020-12-02T00:00:00.000000 |
| certfr-2020-avi-787 | Vulnérabilité dans Mozilla Thunderbird | 2020-12-02T00:00:00.000000 | 2020-12-02T00:00:00.000000 |
| certfr-2020-avi-785 | Vulnérabilité dans Junos OS | 2020-12-01T00:00:00.000000 | 2020-12-02T00:00:00.000000 |
| certfr-2020-avi-784 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-12-01T00:00:00.000000 | 2020-12-01T00:00:00.000000 |
| certfr-2020-avi-783 | Multiples vulnérabilités dans Chrome OS | 2020-12-01T00:00:00.000000 | 2020-12-01T00:00:00.000000 |
| certfr-2020-avi-782 | Multiples vulnérabilités dans IBM Db2 | 2020-12-01T00:00:00.000000 | 2020-12-01T00:00:00.000000 |
| certfr-2020-avi-781 | Vulnérabilité dans les produits Foxit sur macOS | 2020-11-30T00:00:00.000000 | 2020-11-30T00:00:00.000000 |
| certfr-2020-avi-780 | Multiples vulnérabilités dans IBM QRadar Network Security | 2020-11-30T00:00:00.000000 | 2020-11-30T00:00:00.000000 |
| certfr-2020-avi-779 | Multiples vulnérabilités dans Trend Micro IWSVA | 2020-11-30T00:00:00.000000 | 2020-11-30T00:00:00.000000 |
| certfr-2020-avi-778 | Vulnérabilité dans IBM Db2 | 2020-11-27T00:00:00.000000 | 2020-11-27T00:00:00.000000 |
| certfr-2020-avi-777 | Multiples vulnérabilités dans Drupal core | 2020-11-26T00:00:00.000000 | 2020-11-27T00:00:00.000000 |
| certfr-2020-avi-776 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-11-26T00:00:00.000000 | 2020-11-26T00:00:00.000000 |
| certfr-2020-avi-775 | Multiples vulnérabilités dans Zimbra | 2020-11-25T00:00:00.000000 | 2020-11-25T00:00:00.000000 |
| certfr-2020-avi-774 | Vulnérabilité dans Xen | 2020-11-25T00:00:00.000000 | 2020-11-25T00:00:00.000000 |
| certfr-2020-avi-773 | Multiples vulnérabilités dans Joomla | 2020-11-25T00:00:00.000000 | 2020-11-25T00:00:00.000000 |
| certfr-2020-avi-772 | Multiples vulnérabilités dans Citrix Hypervisor | 2020-11-25T00:00:00.000000 | 2020-11-25T00:00:00.000000 |