Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-48327 | 5.3 (v3.1) | WordPress WP Mailgun SMTP plugin <= 1.0.7 - Broken Acc… |
inkthemes |
WP Mailgun SMTP |
2025-08-28T12:37:00.500Z | 2026-04-28T16:12:56.623Z |
| cve-2025-48331 | 7.5 (v3.1) | WordPress WooCommerce Orders & Customers Exporter <= 5… |
vanquish |
WooCommerce Orders & Customers Exporter |
2025-05-30T14:01:38.968Z | 2026-04-28T16:12:56.597Z |
| cve-2025-48319 | 5.9 (v3.1) | WordPress Mesa Mesa Reservation Widget plugin <= 1.0.0… |
gslauraspeck |
Mesa Mesa Reservation Widget |
2025-08-28T12:36:56.244Z | 2026-04-28T16:12:56.573Z |
| cve-2025-48330 | 7.5 (v3.1) | WordPress Real Time Validation for Gravity Forms <= 1.… |
Daman Jeet |
Real Time Validation for Gravity Forms |
2025-11-06T15:53:48.806Z | 2026-04-28T16:12:56.387Z |
| cve-2025-48323 | 5.9 (v3.1) | WordPress Advance Food Menu plugin <= 1.0 - Cross Site… |
Md Abunaser Khan |
Advance Food Menu |
2025-08-28T12:36:58.705Z | 2026-04-28T16:12:56.361Z |
| cve-2025-48322 | 6.5 (v3.1) | WordPress Statify Widget plugin <= 1.4.6 - Cross Site … |
Finn Dohrn |
Statify Widget |
2025-08-28T12:36:58.108Z | 2026-04-28T16:12:56.336Z |
| cve-2025-48314 | 5.9 (v3.1) | WordPress Add Code To Head plugin <= 1.17 - Cross Site… |
salubrio |
Add Code To Head |
2025-08-28T12:36:53.893Z | 2026-04-28T16:12:56.311Z |
| cve-2025-48324 | 5.9 (v3.1) | WordPress tli.tl auto Twitter poster plugin <= 3.4 - C… |
khashabawy |
tli.tl auto Twitter poster |
2025-08-28T12:36:59.287Z | 2026-04-28T16:12:56.304Z |
| cve-2025-48325 | 7.1 (v3.1) | WordPress WP Admin Theme plugin <= 1.0 - Cross Site Re… |
shmish111 |
WP Admin Theme |
2025-08-28T12:36:59.873Z | 2026-04-28T16:12:56.248Z |
| cve-2025-48329 | 7.1 (v3.1) | WordPress Real Time Validation for Gravity Forms plugi… |
Daman Jeet |
Real Time Validation for Gravity Forms |
2025-06-06T11:48:58.610Z | 2026-04-28T16:12:56.247Z |
| cve-2025-48328 | 4.3 (v3.1) | WordPress Real Time Validation for Gravity Forms plugi… |
Daman Jeet |
Real Time Validation for Gravity Forms |
2025-06-06T11:37:51.862Z | 2026-04-28T16:12:56.236Z |
| cve-2025-48318 | 4.3 (v3.1) | WordPress 多说社会化评论框 plugin <= 1.2 - Cross Site Request … |
shen2 |
多说社会化评论框 |
2025-08-28T12:36:55.685Z | 2026-04-28T16:12:56.127Z |
| cve-2025-48317 | 7.5 (v3.1) | WordPress WooCommerce Payment Gateway for Saferpay Plu… |
Stefan Keller |
WooCommerce Payment Gateway for Saferpay |
2025-09-05T16:15:41.410Z | 2026-04-28T16:12:56.126Z |
| cve-2025-48316 | 6.5 (v3.1) | WordPress Responsive Mobile-Friendly Tooltip plugin <=… |
ItayXD |
Responsive Mobile-Friendly Tooltip |
2025-08-28T12:36:55.124Z | 2026-04-28T16:12:56.114Z |
| cve-2025-48311 | 7.1 (v3.1) | WordPress Invisible Optin plugin <= 1.0 - Cross Site R… |
OffClicks |
Invisible Optin |
2025-08-28T12:36:52.053Z | 2026-04-28T16:12:56.020Z |
| cve-2025-48313 | 5.9 (v3.1) | WordPress Tripadvisor Shortcode plugin <= 2.2 - Cross … |
kevin heath |
Tripadvisor Shortcode |
2025-08-28T12:36:53.293Z | 2026-04-28T16:12:55.910Z |
| cve-2025-48310 | 4.3 (v3.1) | WordPress Table Editor plugin <= 1.6.4 - Cross Site Re… |
wptableeditor |
Table Editor |
2025-08-28T12:36:51.433Z | 2026-04-28T16:12:55.909Z |
| cve-2025-48312 | 6.5 (v3.1) | WordPress WPAvatar plugin <= 1.9.4 - Cross Site Script… |
文派翻译(WP Chinese Translation) |
WPAvatar |
2025-08-28T12:36:52.634Z | 2026-04-28T16:12:55.899Z |
| cve-2025-48308 | 7.1 (v3.1) | WordPress Newsletter subscription optin module plugin … |
nonletter |
Newsletter subscription optin module |
2025-08-28T12:36:50.175Z | 2026-04-28T16:12:55.866Z |
| cve-2025-48309 | 7.1 (v3.1) | WordPress BetPress plugin <= 1.0.1 Lite - CSRF to Stor… |
web-able |
BetPress |
2025-08-28T12:36:50.787Z | 2026-04-28T16:12:55.832Z |
| cve-2025-48307 | 7.1 (v3.1) | WordPress SEO For Images plugin <= 1.0.0 - Cross Site … |
kasonzhao |
SEO For Images |
2025-08-28T12:36:49.558Z | 2026-04-28T16:12:55.822Z |
| cve-2025-48305 | 5.9 (v3.1) | WordPress Goal Tracker for Patreon plugin <= 0.4.6 - C… |
vikingjs |
Goal Tracker for Patreon |
2025-08-28T12:36:48.279Z | 2026-04-28T16:12:55.797Z |
| cve-2025-48306 | 7.1 (v3.1) | WordPress Savyour Affiliate Partner plugin <= 2.1.4 - … |
developers savyour |
Savyour Affiliate Partner |
2025-08-28T12:36:48.919Z | 2026-04-28T16:12:55.794Z |
| cve-2025-48304 | 7.1 (v3.1) | WordPress Google XML News Sitemap plugin plugin <= 0.0… |
Gary Illyes |
Google XML News Sitemap plugin |
2025-08-28T12:36:47.674Z | 2026-04-28T16:12:55.784Z |
| cve-2025-48299 | 7.6 (v3.1) | WordPress YayExtra plugin <= 1.5.5 - SQL Injection Vul… |
YayCommerce |
YayExtra |
2025-07-16T10:36:53.680Z | 2026-04-28T16:12:55.760Z |
| cve-2025-48298 | 7.5 (v3.1) | WordPress SEOPress for MainWP <= 1.4 - Local File Inc… |
Benjamin Denis |
SEOPress for MainWP |
2025-08-20T08:03:23.991Z | 2026-04-28T16:12:55.752Z |
| cve-2025-48301 | 7.6 (v3.1) | WordPress SMTP for SendGrid – YaySMTP plugin <= 1.5 - … |
YayCommerce |
SMTP for SendGrid – YaySMTP |
2025-07-16T10:36:53.201Z | 2026-04-28T16:12:55.738Z |
| cve-2025-48303 | 4.3 (v3.1) | WordPress Post Type Converter plugin <= 0.6 - Cross Si… |
Kevin Langley Jr. |
Post Type Converter |
2025-08-25T10:10:03.184Z | 2026-04-28T16:12:55.737Z |
| cve-2025-48300 | 9.1 (v3.1) | WordPress Groundhogg plugin <= 4.2.1 - Arbitrary File … |
Adrian Tobey |
Groundhogg |
2025-07-16T11:28:01.803Z | 2026-04-28T16:12:55.732Z |
| cve-2025-48302 | 7.5 (v3.1) | WordPress FundEngine Plugin <= 1.7.4 - Local File Incl… |
Roxnor |
FundEngine |
2025-08-20T08:03:23.473Z | 2026-04-28T16:12:55.723Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-379 | Vulnérabilité dans VMware Tools pour macOS | 2020-06-19T00:00:00.000000 | 2020-06-19T00:00:00.000000 |
| certfr-2020-avi-378 | Multiples vulnérabilités dans Google Chrome OS | 2020-06-19T00:00:00.000000 | 2020-06-19T00:00:00.000000 |
| certfr-2020-avi-377 | Multiples vulnérabilités dans les produits Cisco | 2020-06-18T00:00:00.000000 | 2020-06-18T00:00:00.000000 |
| certfr-2020-avi-376 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-06-18T00:00:00.000000 | 2020-06-18T00:00:00.000000 |
| certfr-2020-avi-374 | Multiples vulnérabilités dans Google Chrome | 2020-06-16T00:00:00.000000 | 2020-06-16T00:00:00.000000 |
| certfr-2020-avi-372 | Vulnérabilité dans les produits VMware | 2020-06-12T00:00:00.000000 | 2020-06-12T00:00:00.000000 |
| certfr-2020-avi-371 | Multiples vulnérabilités dans PHP | 2020-06-12T00:00:00.000000 | 2020-06-12T00:00:00.000000 |
| certfr-2020-avi-370 | Multiples vulnérabilités dans Citrix Workspace et Receiver | 2020-06-11T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-369 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-06-11T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-368 | Multiples vulnérabilités dans le noyau Linux de Debian | 2020-06-11T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-367 | Multiples vulnérabilités dans GitLab | 2020-06-11T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-366 | Multiples vulnérabilités dans StormShield Network Security | 2020-06-11T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-365 | Multiples vulnérabilités dans Palo Alto PAN-OS et GlobalProtect | 2020-06-11T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-364 | Multiples vulnérabilités dans WordPress | 2020-06-11T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-356 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-06-10T00:00:00.000000 | 2020-06-11T00:00:00.000000 |
| certfr-2020-avi-363 | Multiples vulnérabilités dans les produits Microsoft | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-362 | Multiples vulnérabilités dans Microsoft Windows | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-361 | Multiples vulnérabilités dans Microsoft Office | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-360 | Multiples vulnérabilités dans Microsoft Edge | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-359 | Multiples vulnérabilités dans Microsoft IE | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-358 | Vulnérabilité dans VMware Horizon Client | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-357 | Multiples vulnérabilités dans Schneider Electric Easergy | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-355 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-354 | Vulnérabilité dans Adobe Flash Player | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-353 | Multiples vulnérabilités dans les produits Intel | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-352 | Vulnérabilité dans Citrix Hypervisor | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-351 | Vulnérabilité dans Xen | 2020-06-10T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-348 | Multiples vulnérabilités dans les produits Schneider Electric | 2020-06-09T00:00:00.000000 | 2020-06-10T00:00:00.000000 |
| certfr-2020-avi-350 | Multiples vulnérabilités dans les produits SAP | 2020-06-09T00:00:00.000000 | 2020-06-09T00:00:00.000000 |
| certfr-2020-avi-349 | Multiples vulnérabilités dans les produits Siemens | 2020-06-09T00:00:00.000000 | 2020-06-09T00:00:00.000000 |