Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-49043 | 7.1 (v3.1) | WordPress Magic Responsive Slider and Carousel WordPre… |
LambertGroup |
Magic Responsive Slider and Carousel WordPress |
2026-01-22T16:51:41.498Z | 2026-04-28T16:12:57.902Z |
| cve-2025-49039 | 5.9 (v3.1) | WordPress Link View plugin <= 0.8.0 - Cross Site Scrip… |
mibuthu |
Link View |
2025-08-27T03:25:25.765Z | 2026-04-28T16:12:57.902Z |
| cve-2025-49040 | 4.3 (v3.1) | WordPress Backup Bolt plugin <= 1.5.0 - Cross Site Req… |
Backup Bolt |
Backup Bolt |
2025-08-27T03:24:25.693Z | 2026-04-28T16:12:57.901Z |
| cve-2025-49046 | 7.1 (v3.1) | WordPress xPromoter plugin <= 1.3.4 - Reflected Cross … |
LambertGroup |
xPromoter |
2026-01-22T16:51:41.898Z | 2026-04-28T16:12:57.887Z |
| cve-2025-49033 | 8.5 (v3.1) | WordPress ProfileGrid plugin <= 5.9.5.3 - SQL Injectio… |
Metagauss |
ProfileGrid |
2025-08-14T10:34:22.669Z | 2026-04-28T16:12:57.824Z |
| cve-2025-49037 | 7.1 (v3.1) | WordPress Authentication and xmlrpc log writer plugin … |
Federico Rota |
Authentication and xmlrpc log writer |
2025-08-14T10:34:21.603Z | 2026-04-28T16:12:57.817Z |
| cve-2025-49034 | 7.6 (v3.1) | WordPress Funnel Builder by FunnelKit plugin <= 3.10.2… |
Aman |
Funnel Builder by FunnelKit |
2025-07-16T11:27:59.710Z | 2026-04-28T16:12:57.795Z |
| cve-2025-49035 | 5.9 (v3.1) | WordPress Admin Menu Groups plugin <= 0.1.2 - Cross Si… |
chaimchaikin |
Admin Menu Groups |
2025-08-27T03:26:16.618Z | 2026-04-28T16:12:57.794Z |
| cve-2025-49036 | 8.1 (v3.1) | WordPress Premium Addons for KingComposer Plugin <= 1.… |
octagonwebstudio |
Premium Addons for KingComposer |
2025-08-14T10:34:22.147Z | 2026-04-28T16:12:57.769Z |
| cve-2025-49032 | 6.5 (v3.1) | WordPress Gutenberg Blocks plugin <= 3.3.1 - Cross Sit… |
PublishPress |
Gutenberg Blocks |
2025-07-03T12:09:15.820Z | 2026-04-28T16:12:57.727Z |
| cve-2025-49031 | 7.1 (v3.1) | WordPress SMu Manual DoFollow plugin <= 1.8.1 - Reflec… |
Stefan M. |
SMu Manual DoFollow |
2025-07-16T11:28:00.228Z | 2026-04-28T16:12:57.723Z |
| cve-2025-48364 | 4.9 (v3.1) | WordPress rajce plugin <= 0.4.2 - Server Side Request … |
vEnCa-X |
rajce |
2025-08-28T12:37:11.279Z | 2026-04-28T16:12:57.597Z |
| cve-2025-49028 | 7.1 (v3.1) | WordPress Zoho ZeptoMail plugin <= 3.3.1 - Cross Site … |
Zoho Mail |
Zoho ZeptoMail |
2025-12-31T09:05:02.812Z | 2026-04-28T16:12:57.585Z |
| cve-2025-49029 | 9.1 (v3.1) | WordPress Custom Login And Signup Widget plugin <= 1.0… |
bitto.kazi |
Custom Login And Signup Widget |
2025-07-01T13:27:47.139Z | 2026-04-28T16:12:57.574Z |
| cve-2025-48365 | 5.9 (v3.1) | WordPress Custom Comment plugin <= 2.1.6 - Cross Site … |
imaprogrammer |
Custom Comment |
2025-08-28T12:37:11.934Z | 2026-04-28T16:12:57.573Z |
| cve-2025-48355 | 5.3 (v3.1) | WordPress ProveSource Social Proof plugin <= 3.1.2 - S… |
ProveSource LTD |
ProveSource Social Proof |
2025-08-21T03:27:53.141Z | 2026-04-28T16:12:57.527Z |
| cve-2025-48363 | 4.3 (v3.1) | WordPress Popup for CF7 with Sweet Alert plugin <= 1.6… |
Metin Saraç |
Popup for CF7 with Sweet Alert |
2025-08-28T12:37:10.659Z | 2026-04-28T16:12:57.482Z |
| cve-2025-48352 | 5.9 (v3.1) | WordPress Yandex Site search pinger plugin <= 1.5 - Cr… |
sitesearch-yandex |
Yandex Site search pinger |
2025-08-28T12:37:04.772Z | 2026-04-28T16:12:57.438Z |
| cve-2025-48357 | 5.4 (v3.1) | WordPress Century ToolKit plugin <= 1.2.1 - Cross Site… |
Theme Century |
Century ToolKit |
2025-08-28T12:37:07.117Z | 2026-04-28T16:12:57.414Z |
| cve-2025-48356 | 6.5 (v3.1) | WordPress Kanpress plugin <= 1.1 - Cross Site Script… |
Isra |
Kanpress |
2025-08-28T12:37:06.561Z | 2026-04-28T16:12:57.391Z |
| cve-2025-48354 | 6.5 (v3.1) | WordPress Better Post & Filter Widgets for Elementor p… |
WP Smart Widgets |
Better Post & Filter Widgets for Elementor |
2025-08-28T12:37:05.974Z | 2026-04-28T16:12:57.383Z |
| cve-2025-48353 | 7.1 (v3.1) | WordPress Clickbank WordPress Plugin (Niche Storefront… |
dactum |
Clickbank WordPress Plugin (Niche Storefront) |
2025-08-28T12:37:05.396Z | 2026-04-28T16:12:57.380Z |
| cve-2025-48359 | 7.1 (v3.1) | WordPress ATT YouTube Widget plugin <= 1.0 - Cross Sit… |
thaihavnn07 |
ATT YouTube Widget |
2025-08-28T12:37:08.340Z | 2026-04-28T16:12:57.360Z |
| cve-2025-48358 | 5.9 (v3.1) | WordPress Risk Free Cash On Delivery (COD) – WooCommer… |
everythingwp |
Risk Free Cash On Delivery (COD) – WooCommerce |
2025-08-28T12:37:07.703Z | 2026-04-28T16:12:57.357Z |
| cve-2025-48361 | 5.3 (v3.1) | WordPress Hesabfa Accounting plugin <= 2.2.5 - Sensiti… |
Saeed Sattar Beglou |
Hesabfa Accounting |
2025-08-28T12:37:09.524Z | 2026-04-28T16:12:57.356Z |
| cve-2025-48362 | 5.4 (v3.1) | WordPress Hesabfa Accounting plugin <= 2.2.5 - Cross S… |
Saeed Sattar Beglou |
Hesabfa Accounting |
2025-08-28T12:37:10.106Z | 2026-04-28T16:12:57.344Z |
| cve-2025-48350 | 4.3 (v3.1) | WordPress AutoWP plugin <= 2.2.7 - Broken Access Contr… |
Basar Ventures |
AutoWP |
2025-08-28T12:37:03.559Z | 2026-04-28T16:12:57.343Z |
| cve-2025-48351 | 7.1 (v3.1) | WordPress Kento Splash Screen plugin <= 1.4 - Cross Si… |
PluginsPoint |
Kento Splash Screen |
2025-08-28T12:37:04.134Z | 2026-04-28T16:12:57.300Z |
| cve-2025-48360 | 5.9 (v3.1) | WordPress Varnish/Nginx Proxy Caching plugin <= 1.8.3 … |
Razvan Stanga |
Varnish/Nginx Proxy Caching |
2025-08-28T12:37:08.905Z | 2026-04-28T16:12:57.275Z |
| cve-2025-48349 | 6.5 (v3.1) | WordPress Video Gallery – Vimeo and YouTube Gallery pl… |
origincode |
Video Gallery – Vimeo and YouTube Gallery |
2025-08-28T12:37:02.975Z | 2026-04-28T16:12:57.266Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-499 | Multiples vulnérabilités dans Microsoft Edge | 2020-08-12T00:00:00.000000 | 2020-08-12T00:00:00.000000 |
| certfr-2020-avi-498 | Multiples vulnérabilités dans Microsoft IE | 2020-08-12T00:00:00.000000 | 2020-08-12T00:00:00.000000 |
| certfr-2020-avi-497 | Multiples vulnérabilités dans les produits Intel | 2020-08-12T00:00:00.000000 | 2020-08-12T00:00:00.000000 |
| certfr-2020-avi-496 | Multiples vulnérabilités dans Adobe Reader et Acrobat | 2020-08-11T00:00:00.000000 | 2020-08-11T00:00:00.000000 |
| certfr-2020-avi-495 | Multiples vulnérabilités dans les produits SAP | 2020-08-11T00:00:00.000000 | 2020-08-11T00:00:00.000000 |
| certfr-2020-avi-494 | Multiples vulnérabilités dans les produits Siemens | 2020-08-11T00:00:00.000000 | 2020-08-11T00:00:00.000000 |
| certfr-2020-avi-493 | Multiples vulnérabilités dans les produits Schneider Electric | 2020-08-11T00:00:00.000000 | 2020-08-11T00:00:00.000000 |
| certfr-2020-avi-492 | Multiples vulnérabilités dans Citrix Endpoint Management | 2020-08-11T00:00:00.000000 | 2020-08-11T00:00:00.000000 |
| certfr-2020-avi-491 | Multiples vulnérabilités dans Google Chrome | 2020-08-11T00:00:00.000000 | 2020-08-11T00:00:00.000000 |
| certfr-2020-avi-489 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-08-07T00:00:00.000000 | 2020-08-07T00:00:00.000000 |
| certfr-2020-avi-488 | Multiples vulnérabilités dans PHP | 2020-08-06T00:00:00.000000 | 2020-08-06T00:00:00.000000 |
| certfr-2020-avi-487 | Multiples vulnérabilités dans les produits Cisco | 2020-08-06T00:00:00.000000 | 2020-08-06T00:00:00.000000 |
| certfr-2020-avi-486 | Multiples vulnérabilités dans GitLab | 2020-08-06T00:00:00.000000 | 2020-08-06T00:00:00.000000 |
| certfr-2020-avi-485 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-08-05T00:00:00.000000 | 2020-08-05T00:00:00.000000 |
| certfr-2020-avi-484 | Multiples vulnérabilités dans Google Android | 2020-08-04T00:00:00.000000 | 2020-08-04T00:00:00.000000 |
| certfr-2020-avi-483 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-08-04T00:00:00.000000 | 2020-08-04T00:00:00.000000 |
| certfr-2020-avi-482 | Vulnérabilité dans le noyau Linux de Red Hat | 2020-08-04T00:00:00.000000 | 2020-08-04T00:00:00.000000 |
| certfr-2020-avi-481 | Vulnérabilité dans IBM WebSphere | 2020-08-03T00:00:00.000000 | 2020-08-03T00:00:00.000000 |
| certfr-2020-avi-480 | Multiples vulnérabilités dans Schneider Electric Triconex | 2020-07-31T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-avi-479 | Multiples vulnérabilités dans Mozilla Thunderbird | 2020-07-31T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-avi-478 | Multiples vulnérabilités dans Foxit Reader et PhantomPDF | 2020-07-31T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-avi-477 | Multiples vulnérabilités dans Grub2 | 2020-07-30T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-avi-209 | Multiples vulnérabilités dans les produits Schneider Electric | 2020-04-15T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-avi-476 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-07-30T00:00:00.000000 | 2020-07-30T00:00:00.000000 |
| certfr-2020-avi-475 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-07-30T00:00:00.000000 | 2020-07-30T00:00:00.000000 |
| certfr-2020-avi-474 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-07-30T00:00:00.000000 | 2020-07-30T00:00:00.000000 |
| certfr-2020-avi-473 | Multiples vulnérabilités dans Google Chrome OS | 2020-07-30T00:00:00.000000 | 2020-07-30T00:00:00.000000 |
| certfr-2020-avi-472 | Multiples vulnérabilités dans les produits Cisco | 2020-07-30T00:00:00.000000 | 2020-07-30T00:00:00.000000 |
| certfr-2020-avi-471 | Multiples vulnérabilités dans Mozilla Thunderbird | 2020-07-29T00:00:00.000000 | 2020-07-29T00:00:00.000000 |
| certfr-2020-avi-470 | Multiples vulnérabilités dans Mozilla Firefox | 2020-07-29T00:00:00.000000 | 2020-07-29T00:00:00.000000 |