Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-48126 | 8.1 (v3.1) | WordPress Essential Real Estate plugin <= 5.2.9 - Loca… |
g5theme |
Essential Real Estate |
2025-06-09T15:54:03.530Z | 2026-04-28T16:12:52.081Z |
| cve-2025-48118 | 8.5 (v3.1) | WordPress Woocommerce Partial Shipment plugin <= 3.2 -… |
WpExperts Hub |
Woocommerce Partial Shipment |
2025-06-17T15:01:32.252Z | 2026-04-28T16:12:51.899Z |
| cve-2025-48124 | 7.5 (v3.1) | WordPress Spreadsheet Price Changer for WooCommerce an… |
Holest Engineering |
Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light |
2025-06-09T15:54:05.023Z | 2026-04-28T16:12:51.886Z |
| cve-2025-48119 | 5.3 (v3.1) | WordPress RS WP Book Showcase plugin <= 6.7.59 - Conte… |
RS WP THEMES |
RS WP Book Showcase |
2025-05-16T15:45:09.672Z | 2026-04-28T16:12:51.882Z |
| cve-2025-48120 | 5.3 (v3.1) | WordPress MapSVG Lite plugin <= 8.6.9 - Arbitrary Shor… |
RomanCode |
MapSVG |
2025-05-16T15:45:10.264Z | 2026-04-28T16:12:51.879Z |
| cve-2025-48123 | 10 (v3.1) | WordPress Spreadsheet Price Changer for WooCommerce an… |
Holest Engineering |
Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light |
2025-06-09T15:54:05.742Z | 2026-04-28T16:12:51.875Z |
| cve-2025-48122 | 9.3 (v3.1) | WordPress Spreadsheet Price Changer for WooCommerce an… |
Holest Engineering |
Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light |
2025-06-09T15:54:06.451Z | 2026-04-28T16:12:51.847Z |
| cve-2025-48121 | 6.5 (v3.1) | WordPress WP Notes Widget plugin <= 1.0.6 - Cross Sit… |
Steve Puddick |
WP Notes Widget |
2025-05-16T15:45:10.875Z | 2026-04-28T16:12:51.845Z |
| cve-2025-48117 | 5.3 (v3.1) | WordPress WooCommerce POS plugin <= 1.7.8 - Broken Acc… |
kilbot |
WooCommerce POS |
2025-05-16T15:45:09.119Z | 2026-04-28T16:12:51.843Z |
| cve-2025-48115 | 4.3 (v3.1) | WordPress ValidateCertify plugin <= 1.6.4 - Cross Site… |
Javier Revilla |
ValidateCertify |
2025-05-16T15:45:07.990Z | 2026-04-28T16:12:51.837Z |
| cve-2025-48114 | 7.1 (v3.1) | WordPress ShayanWeb Admin FontChanger plugin <= 1.9.1 … |
Shayan Farhang Pazhooh |
ShayanWeb Admin FontChanger |
2025-05-16T15:45:07.460Z | 2026-04-28T16:12:51.831Z |
| cve-2025-48111 | 4.3 (v3.1) | WordPress YITH PayPal Express Checkout for WooCommerce… |
YITHEMES |
YITH PayPal Express Checkout for WooCommerce |
2025-06-17T15:01:43.752Z | 2026-04-28T16:12:51.827Z |
| cve-2025-48116 | 5.3 (v3.1) | WordPress EventON plugin <= 2.4.4 - Broken Access Cont… |
Ashan Perera |
EventON |
2025-05-16T15:45:08.523Z | 2026-04-28T16:12:51.818Z |
| cve-2025-48112 | 7.1 (v3.1) | WordPress Dot html,php,xml etc pages plugin <= 1.0 - R… |
karimmughal |
Dot html,php,xml etc pages |
2025-05-16T15:45:06.405Z | 2026-04-28T16:12:51.714Z |
| cve-2025-48110 | 6.5 (v3.1) | WordPress Link View plugin <= 0.8.0 - Cross Site Scrip… |
mibuthu |
Link View |
2025-08-28T12:36:47.016Z | 2026-04-28T16:12:51.696Z |
| cve-2025-48113 | 6.5 (v3.1) | WordPress Broadstreet plugin <= 1.51.2 - Cross Site Sc… |
Broadstreet |
Broadstreet Ads |
2025-05-16T15:45:06.919Z | 2026-04-28T16:12:51.669Z |
| cve-2025-48108 | 6.5 (v3.1) | WordPress School Management Plugin <= 93.2.0 - Broken … |
Mojoomla |
School Management |
2025-08-26T09:41:50.512Z | 2026-04-28T16:12:51.669Z |
| cve-2025-48109 | 7.1 (v3.1) | WordPress XM-Backup plugin <= 0.9.1 - CSRF to Stored X… |
Xavier Media |
XM-Backup |
2025-08-28T12:36:46.381Z | 2026-04-28T16:12:51.664Z |
| cve-2025-48104 | 7.1 (v3.1) | WordPress Floating Window Music Player plugin <= 3.4.2… |
ericzane |
Floating Window Music Player |
2025-09-05T16:15:42.454Z | 2026-04-28T16:12:51.664Z |
| cve-2025-48107 | 7.1 (v3.1) | WordPress Uncode theme < 2.9.4.4 - Reflected Cross Sit… |
undsgn |
Uncode |
2025-09-26T08:31:13.612Z | 2026-04-28T16:12:51.619Z |
| cve-2025-48103 | 6.5 (v3.1) | WordPress Today's Date Inserter plugin <= 1.2.1 - Cros… |
mulscully |
Today's Date Inserter |
2025-09-05T16:15:42.975Z | 2026-04-28T16:12:51.382Z |
| cve-2025-48105 | 6.5 (v3.1) | WordPress Easy Flash Embed plugin <= 1.0 - Cross Site … |
Vincent Boiardt |
Easy Flash Embed |
2025-09-05T16:15:41.940Z | 2026-04-28T16:12:51.318Z |
| cve-2025-48102 | 5.9 (v3.1) | WordPress GoUrl Bitcoin Payment Gateway & Paid Downloa… |
gourl |
GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership |
2025-09-05T16:15:43.514Z | 2026-04-28T16:12:51.255Z |
| cve-2025-48096 | 6.5 (v3.1) | WordPress Custom CSS plugin <= 1.4.0 - Broken Access C… |
FRESHFACE |
Custom CSS |
2025-10-22T14:32:06.895Z | 2026-04-28T16:12:51.232Z |
| cve-2025-48100 | 9.1 (v3.1) | WordPress bidorbuy Store Integrator plugin <= 2.12.0 -… |
extremeidea |
bidorbuy Store Integrator |
2025-08-28T12:36:45.662Z | 2026-04-28T16:12:51.217Z |
| cve-2025-48101 | 8.8 (v3.1) | WordPress Constant Contact for WordPress Plugin <= 4.1… |
webdevstudios |
Constant Contact for WordPress |
2025-09-09T16:26:04.152Z | 2026-04-28T16:12:51.212Z |
| cve-2025-48094 | 7.1 (v3.1) | WordPress Magic Slider plugin <= 2.2 - Reflected Cross… |
LambertGroup |
Magic Slider |
2026-01-22T16:51:41.292Z | 2026-04-28T16:12:51.075Z |
| cve-2025-48091 | 8.5 (v3.1) | WordPress AnyComment plugin <= 0.3.6 - SQL Injection v… |
Alexander |
AnyComment |
2025-10-22T14:32:06.134Z | 2026-04-28T16:12:50.891Z |
| cve-2025-48085 | 7.1 (v3.1) | WordPress Simple Stripe plugin <= 0.9.17 - Cross Site … |
ZIPANG |
Simple Stripe |
2025-11-06T15:53:41.777Z | 2026-04-28T16:12:50.555Z |
| cve-2025-48089 | 9.3 (v3.1) | WordPress Education WordPress Theme | HiStudy theme < … |
Rainbow-Themes |
Education WordPress Theme | HiStudy |
2025-11-06T15:53:43.152Z | 2026-04-28T16:12:50.490Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-231 | Vulnérabilité dans Fortinet FortiSwitch | 2020-04-20T00:00:00.000000 | 2020-04-20T00:00:00.000000 |
| certfr-2020-avi-228 | Multiples vulnérabilités dans PHP | 2020-04-16T00:00:00.000000 | 2020-04-20T00:00:00.000000 |
| certfr-2020-avi-230 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-04-17T00:00:00.000000 | 2020-04-17T00:00:00.000000 |
| certfr-2020-avi-229 | Vulnérabilité dans Apple Xcode | 2020-04-17T00:00:00.000000 | 2020-04-17T00:00:00.000000 |
| certfr-2020-avi-227 | Multiples vulnérabilités dans les produits Cisco | 2020-04-16T00:00:00.000000 | 2020-04-16T00:00:00.000000 |
| certfr-2020-avi-226 | Vulnérabilité dans Google Chrome | 2020-04-16T00:00:00.000000 | 2020-04-16T00:00:00.000000 |
| certfr-2020-avi-225 | Multiples vulnérabilités dans les produits Microsoft | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-224 | Multiples vulnérabilités dans Microsoft Windows | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-223 | Multiples vulnérabilités dans Microsoft Office | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-222 | Multiples vulnérabilités dans Microsoft Edge | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-221 | Multiples vulnérabilités dans Microsoft IE | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-220 | Multiples vulnérabilités dans Oracle Virtualization | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-219 | Multiples vulnérabilités dans Oracle Systems | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-218 | Multiples vulnérabilités dans Oracle MySQL | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-217 | Multiples vulnérabilités dans Oracle Java SE | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-216 | Multiples vulnérabilités dans Oracle Database Server | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-215 | Multiples vulnérabilités dans les produits Intel | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-214 | Multiples vulnérabilités dans VMware vRealize Log Insight | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-213 | Multiples vulnérabilités dans Citrix Hypervisor | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-212 | Multiples vulnérabilités dans GitLab | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-211 | Multiples vulnérabilités dans Aruba ClearPass | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-210 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-208 | Multiples vulnérabilités dans Adobe ColdFusion | 2020-04-15T00:00:00.000000 | 2020-04-15T00:00:00.000000 |
| certfr-2020-avi-207 | Multiples vulnérabilités dans les produits Siemens | 2020-04-14T00:00:00.000000 | 2020-04-14T00:00:00.000000 |
| certfr-2020-avi-206 | Multiples vulnérabilités dans Stormshield Network Security | 2020-04-14T00:00:00.000000 | 2020-04-14T00:00:00.000000 |
| certfr-2020-avi-205 | Multiples vulnérabilités dans Xen | 2020-04-14T00:00:00.000000 | 2020-04-14T00:00:00.000000 |
| certfr-2020-avi-204 | Multiples vulnérabilités dans Mozilla Thunderbird | 2020-04-14T00:00:00.000000 | 2020-04-14T00:00:00.000000 |
| certfr-2020-avi-203 | Multiples vulnérabilités dans Tenable.sc | 2020-04-14T00:00:00.000000 | 2020-04-14T00:00:00.000000 |
| certfr-2020-avi-202 | Vulnérabilité dans VMware vCenter Server | 2020-04-10T00:00:00.000000 | 2020-04-10T00:00:00.000000 |
| certfr-2020-avi-201 | Vulnérabilité dans IBM WebSphere | 2020-04-10T00:00:00.000000 | 2020-04-10T00:00:00.000000 |