Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-49028 | 7.1 (v3.1) | WordPress Zoho ZeptoMail plugin <= 3.3.1 - Cross Site … |
Zoho Mail |
Zoho ZeptoMail |
2025-12-31T09:05:02.812Z | 2026-04-28T16:12:57.585Z |
| cve-2025-49029 | 9.1 (v3.1) | WordPress Custom Login And Signup Widget plugin <= 1.0… |
bitto.kazi |
Custom Login And Signup Widget |
2025-07-01T13:27:47.139Z | 2026-04-28T16:12:57.574Z |
| cve-2025-48365 | 5.9 (v3.1) | WordPress Custom Comment plugin <= 2.1.6 - Cross Site … |
imaprogrammer |
Custom Comment |
2025-08-28T12:37:11.934Z | 2026-04-28T16:12:57.573Z |
| cve-2025-48355 | 5.3 (v3.1) | WordPress ProveSource Social Proof plugin <= 3.1.2 - S… |
ProveSource LTD |
ProveSource Social Proof |
2025-08-21T03:27:53.141Z | 2026-04-28T16:12:57.527Z |
| cve-2025-48363 | 4.3 (v3.1) | WordPress Popup for CF7 with Sweet Alert plugin <= 1.6… |
Metin Saraç |
Popup for CF7 with Sweet Alert |
2025-08-28T12:37:10.659Z | 2026-04-28T16:12:57.482Z |
| cve-2025-48352 | 5.9 (v3.1) | WordPress Yandex Site search pinger plugin <= 1.5 - Cr… |
sitesearch-yandex |
Yandex Site search pinger |
2025-08-28T12:37:04.772Z | 2026-04-28T16:12:57.438Z |
| cve-2025-48357 | 5.4 (v3.1) | WordPress Century ToolKit plugin <= 1.2.1 - Cross Site… |
Theme Century |
Century ToolKit |
2025-08-28T12:37:07.117Z | 2026-04-28T16:12:57.414Z |
| cve-2025-48356 | 6.5 (v3.1) | WordPress Kanpress plugin <= 1.1 - Cross Site Script… |
Isra |
Kanpress |
2025-08-28T12:37:06.561Z | 2026-04-28T16:12:57.391Z |
| cve-2025-48354 | 6.5 (v3.1) | WordPress Better Post & Filter Widgets for Elementor p… |
WP Smart Widgets |
Better Post & Filter Widgets for Elementor |
2025-08-28T12:37:05.974Z | 2026-04-28T16:12:57.383Z |
| cve-2025-48353 | 7.1 (v3.1) | WordPress Clickbank WordPress Plugin (Niche Storefront… |
dactum |
Clickbank WordPress Plugin (Niche Storefront) |
2025-08-28T12:37:05.396Z | 2026-04-28T16:12:57.380Z |
| cve-2025-48359 | 7.1 (v3.1) | WordPress ATT YouTube Widget plugin <= 1.0 - Cross Sit… |
thaihavnn07 |
ATT YouTube Widget |
2025-08-28T12:37:08.340Z | 2026-04-28T16:12:57.360Z |
| cve-2025-48358 | 5.9 (v3.1) | WordPress Risk Free Cash On Delivery (COD) – WooCommer… |
everythingwp |
Risk Free Cash On Delivery (COD) – WooCommerce |
2025-08-28T12:37:07.703Z | 2026-04-28T16:12:57.357Z |
| cve-2025-48361 | 5.3 (v3.1) | WordPress Hesabfa Accounting plugin <= 2.2.5 - Sensiti… |
Saeed Sattar Beglou |
Hesabfa Accounting |
2025-08-28T12:37:09.524Z | 2026-04-28T16:12:57.356Z |
| cve-2025-48362 | 5.4 (v3.1) | WordPress Hesabfa Accounting plugin <= 2.2.5 - Cross S… |
Saeed Sattar Beglou |
Hesabfa Accounting |
2025-08-28T12:37:10.106Z | 2026-04-28T16:12:57.344Z |
| cve-2025-48350 | 4.3 (v3.1) | WordPress AutoWP plugin <= 2.2.7 - Broken Access Contr… |
Basar Ventures |
AutoWP |
2025-08-28T12:37:03.559Z | 2026-04-28T16:12:57.343Z |
| cve-2025-48351 | 7.1 (v3.1) | WordPress Kento Splash Screen plugin <= 1.4 - Cross Si… |
PluginsPoint |
Kento Splash Screen |
2025-08-28T12:37:04.134Z | 2026-04-28T16:12:57.300Z |
| cve-2025-48360 | 5.9 (v3.1) | WordPress Varnish/Nginx Proxy Caching plugin <= 1.8.3 … |
Razvan Stanga |
Varnish/Nginx Proxy Caching |
2025-08-28T12:37:08.905Z | 2026-04-28T16:12:57.275Z |
| cve-2025-48349 | 6.5 (v3.1) | WordPress Video Gallery – Vimeo and YouTube Gallery pl… |
origincode |
Video Gallery – Vimeo and YouTube Gallery |
2025-08-28T12:37:02.975Z | 2026-04-28T16:12:57.266Z |
| cve-2025-48348 | 4.3 (v3.1) | WordPress Site Offline plugin <= 1.5.7 - Broken Access… |
chandrashekharsahu |
Site Offline |
2025-08-28T12:37:02.392Z | 2026-04-28T16:12:57.237Z |
| cve-2025-48344 | 5.4 (v3.1) | WordPress Rootspersona plugin <= 3.7.5 - Cross Site Re… |
ed4becky |
Rootspersona |
2025-05-19T14:55:23.169Z | 2026-04-28T16:12:57.200Z |
| cve-2025-48347 | 6.5 (v3.1) | WordPress bxSlider integration for WordPress plugin <=… |
Vincent Mimoun-Prat |
bxSlider integration for WordPress |
2025-08-28T12:37:01.740Z | 2026-04-28T16:12:57.181Z |
| cve-2025-48346 | 5.3 (v3.1) | WordPress Embed and Integrate Etsy Shop plugin <= 1.0.… |
Embed360 |
Embed and Integrate Etsy Shop |
2025-05-19T14:55:23.640Z | 2026-04-28T16:12:57.135Z |
| cve-2025-48345 | 7.1 (v3.1) | WordPress Contact Form 7 Editor Button plugin <= 1.0.0… |
arisoft |
Contact Form 7 Editor Button |
2025-07-16T11:28:00.737Z | 2026-04-28T16:12:57.054Z |
| cve-2025-48341 | 5.9 (v3.1) | WordPress Form Maker by 10Web plugin <= 1.15.33 - Cros… |
10Web |
Form Maker by 10Web |
2025-05-19T14:55:22.115Z | 2026-04-28T16:12:57.050Z |
| cve-2025-48343 | 7.1 (v3.1) | WordPress WPMU Ldap Authentication plugin <= 5.0.1 - C… |
Aaron Axelsen |
WPMU Ldap Authentication |
2025-08-28T12:37:01.120Z | 2026-04-28T16:12:56.914Z |
| cve-2025-48342 | 5.4 (v3.1) | WordPress Dynamic Pricing & Discounts Lite for WooComm… |
RedefiningTheWeb |
Dynamic Pricing & Discounts Lite for WooCommerce |
2025-05-19T14:55:22.665Z | 2026-04-28T16:12:56.897Z |
| cve-2025-48321 | 7.1 (v3.1) | WordPress Ultimate twitter profile widget plugin <= 1.… |
dyiosah |
Ultimate twitter profile widget |
2025-08-28T12:36:57.446Z | 2026-04-28T16:12:56.821Z |
| cve-2025-48332 | 7.5 (v3.1) | WordPress Gutenberg Blocks <= 3.3.1 - Local File Inclu… |
PublishPress |
Gutenberg Blocks |
2025-08-14T10:34:23.230Z | 2026-04-28T16:12:56.793Z |
| cve-2025-48340 | 9.8 (v3.1) | WordPress User Profile Meta Manager plugin <= 1.02 - C… |
Danny Vink |
User Profile Meta Manager |
2025-05-19T20:33:06.741Z | 2026-04-28T16:12:56.780Z |
| cve-2025-48339 | 6.5 (v3.1) | WordPress Profiler - What Slowing Down Your WP <= 1.0.… |
activity-log.com |
Profiler - What Slowing Down Your WP |
2025-07-16T11:28:01.316Z | 2026-04-28T16:12:56.764Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-529 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-08-26T00:00:00.000000 | 2020-08-26T00:00:00.000000 |
| certfr-2020-avi-528 | Multiples vulnérabilités dans Aruba Aruba Intelligent Edge Switches | 2020-08-26T00:00:00.000000 | 2020-08-26T00:00:00.000000 |
| certfr-2020-avi-527 | Multiples vulnérabilités dans Joomla! | 2020-08-26T00:00:00.000000 | 2020-08-26T00:00:00.000000 |
| certfr-2020-avi-526 | Multiples vulnérabilités dans Citrix Hypervisor | 2020-08-25T00:00:00.000000 | 2020-08-25T00:00:00.000000 |
| certfr-2020-avi-525 | Vulnérabilité dans Xen | 2020-08-25T00:00:00.000000 | 2020-08-25T00:00:00.000000 |
| certfr-2020-avi-524 | Multiples vulnérabilités dans Microsoft Windows | 2020-08-21T00:00:00.000000 | 2020-08-21T00:00:00.000000 |
| certfr-2020-avi-523 | Multiples vulnérabilités dans BIND | 2020-08-21T00:00:00.000000 | 2020-08-21T00:00:00.000000 |
| certfr-2020-avi-522 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-08-21T00:00:00.000000 | 2020-08-21T00:00:00.000000 |
| certfr-2020-avi-521 | Vulnérabilité dans IBM WebSphere | 2020-08-21T00:00:00.000000 | 2020-08-21T00:00:00.000000 |
| certfr-2020-avi-520 | Multiples vulnérabilités dans les produits VMware | 2020-08-21T00:00:00.000000 | 2020-08-21T00:00:00.000000 |
| certfr-2020-avi-519 | Vulnérabilité dans Tenable Nessus | 2020-08-21T00:00:00.000000 | 2020-08-21T00:00:00.000000 |
| certfr-2020-avi-516 | Vulnérabilité dans IBM Db2 | 2020-08-20T00:00:00.000000 | 2020-08-21T00:00:00.000000 |
| certfr-2020-avi-518 | Multiples vulnérabilités dans les produits Cisco | 2020-08-20T00:00:00.000000 | 2020-08-20T00:00:00.000000 |
| certfr-2020-avi-515 | Vulnérabilité dans Google Chrome | 2020-08-19T00:00:00.000000 | 2020-08-19T00:00:00.000000 |
| certfr-2020-avi-514 | Multiples vulnérabilités dans GitLab | 2020-08-19T00:00:00.000000 | 2020-08-19T00:00:00.000000 |
| certfr-2020-avi-513 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-08-18T00:00:00.000000 | 2020-08-18T00:00:00.000000 |
| certfr-2020-avi-512 | Multiples vulnérabilités dans GitLab | 2020-08-18T00:00:00.000000 | 2020-08-18T00:00:00.000000 |
| certfr-2020-avi-511 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-08-14T00:00:00.000000 | 2020-08-14T00:00:00.000000 |
| certfr-2020-avi-510 | Multiples vulnérabilités dans PostgreSQL | 2020-08-14T00:00:00.000000 | 2020-08-14T00:00:00.000000 |
| certfr-2020-avi-509 | Vulnérabilité dans Apache Struts | 2020-08-14T00:00:00.000000 | 2020-08-14T00:00:00.000000 |
| certfr-2020-avi-508 | Vulnérabilité dans Wireshark | 2020-08-14T00:00:00.000000 | 2020-08-14T00:00:00.000000 |
| certfr-2020-avi-507 | Vulnérabilité dans IBM WebSphere | 2020-08-14T00:00:00.000000 | 2020-08-14T00:00:00.000000 |
| certfr-2020-avi-506 | Multiples vulnérabilités dans Schneider Electric PACTware | 2020-08-13T00:00:00.000000 | 2020-08-13T00:00:00.000000 |
| certfr-2020-avi-505 | Vulnérabilité dans Apache Struts | 2020-08-13T00:00:00.000000 | 2020-08-13T00:00:00.000000 |
| certfr-2020-avi-504 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2020-08-13T00:00:00.000000 | 2020-08-13T00:00:00.000000 |
| certfr-2020-avi-490 | Multiples vulnérabilités dans Apache Server | 2020-08-07T00:00:00.000000 | 2020-08-13T00:00:00.000000 |
| certfr-2020-avi-503 | Multiples vulnérabilités dans les produits Microsoft | 2020-08-12T00:00:00.000000 | 2020-08-12T00:00:00.000000 |
| certfr-2020-avi-502 | Multiples vulnérabilités dans Microsoft .Net | 2020-08-12T00:00:00.000000 | 2020-08-12T00:00:00.000000 |
| certfr-2020-avi-501 | Multiples vulnérabilités dans Microsoft Windows | 2020-08-12T00:00:00.000000 | 2020-08-12T00:00:00.000000 |
| certfr-2020-avi-500 | Multiples vulnérabilités dans Microsoft Office | 2020-08-12T00:00:00.000000 | 2020-08-12T00:00:00.000000 |