Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-39450 | 6.5 (v3.1) | WordPress JetTabs plugin <= 2.2.7 - Cross Site Scripti… |
Crocoblock |
JetTabs |
2025-05-19T17:32:19.805Z | 2026-04-28T16:12:31.920Z |
| cve-2025-39452 | 7.5 (v3.1) | WordPress WPCafe plugin <= 2.2.32 - Local File Inclusi… |
Arraytics |
WPCafe |
2025-04-17T15:15:42.576Z | 2026-04-28T16:12:31.907Z |
| cve-2025-39453 | 4.3 (v3.1) | WordPress Advanced Dynamic Pricing for WooCommerce plu… |
algol.plus |
Advanced Dynamic Pricing for WooCommerce |
2025-04-17T15:15:41.737Z | 2026-04-28T16:12:31.901Z |
| cve-2025-39448 | 6.5 (v3.1) | WordPress JetElements For Elementor plugin <= 2.7.4.1 … |
Crocoblock |
JetElements For Elementor |
2025-05-19T17:33:17.762Z | 2026-04-28T16:12:31.890Z |
| cve-2025-39446 | 7.1 (v3.1) | WordPress Booster Plus for WooCommerce plugin <= 7.2.4… |
Pluggabl LLC |
Booster Plus for WooCommerce |
2025-05-19T18:55:54.932Z | 2026-04-28T16:12:31.832Z |
| cve-2025-39445 | 9.3 (v3.1) | WordPress Super Store Finder <= 7.2 - SQL Injection Vu… |
highwarden |
Super Store Finder |
2025-05-19T18:56:59.117Z | 2026-04-28T16:12:31.832Z |
| cve-2025-39441 | 7.1 (v3.1) | WordPress Dashboard Notepads plugin <= 1.2.1 - CSRF to… |
swedish boy |
Dashboard Notepads |
2025-04-17T15:16:50.867Z | 2026-04-28T16:12:31.816Z |
| cve-2025-39443 | 4.3 (v3.1) | WordPress Verge3D plugin <= 4.9.0 - Cross Site Request… |
Soft8Soft LLC |
Verge3D |
2025-04-17T15:15:44.162Z | 2026-04-28T16:12:31.767Z |
| cve-2025-39442 | 7.1 (v3.1) | WordPress Review Wave – Google Places Reviews plugin <… |
MessageMetric |
Review Wave – Google Places Reviews |
2025-04-17T15:16:49.917Z | 2026-04-28T16:12:31.716Z |
| cve-2025-39444 | 5.9 (v3.1) | WordPress MaxButtons plugin <= 9.8.3 - Cross Site Scri… |
maxfoundry |
MaxButtons |
2025-04-17T15:16:48.145Z | 2026-04-28T16:12:31.712Z |
| cve-2025-39439 | 5.3 (v3.1) | WordPress wpLike2Get plugin <= 1.2.9 - Sensitive Data … |
Markus Drubba |
wpLike2Get |
2025-04-17T15:16:52.531Z | 2026-04-28T16:12:31.534Z |
| cve-2025-39431 | 7.1 (v3.1) | WordPress Amazon Showcase WordPress Plugin plugin <= 2… |
Aaron Forgue |
Amazon Showcase WordPress Plugin |
2025-04-17T15:16:59.280Z | 2026-04-28T16:12:31.479Z |
| cve-2025-39440 | 7.1 (v3.1) | WordPress Broken Links Remover plugin <= 1.2.2 - CSRF … |
Rajesh |
Broken Links Remover |
2025-04-17T15:16:51.708Z | 2026-04-28T16:12:31.464Z |
| cve-2025-39435 | 7.1 (v3.1) | WordPress My Marginalia plugin <= 1.0.6 - CSRF to Stor… |
davidfcarr |
My Marginalia |
2025-04-17T15:16:56.011Z | 2026-04-28T16:12:31.456Z |
| cve-2025-39434 | 4.3 (v3.1) | WordPress Avatar plugin <= 0.1.4 - Insecure Direct Obj… |
Scott Taylor |
Avatar |
2025-04-17T15:16:56.834Z | 2026-04-28T16:12:31.448Z |
| cve-2025-39438 | 4.3 (v3.1) | WordPress Theme Changer plugin <= 1.4 - Cross Site Req… |
momen2009 |
Theme Changer |
2025-04-17T15:16:53.443Z | 2026-04-28T16:12:31.427Z |
| cve-2025-39437 | 4.3 (v3.1) | WordPress Anthologize plugin <= 0.8.3 - Cross Site Req… |
Boone Gorges |
Anthologize |
2025-04-17T15:16:54.327Z | 2026-04-28T16:12:31.395Z |
| cve-2025-39436 | 9.1 (v3.1) | WordPress I Draw <= 1.0 - Arbitrary File Upload Vulner… |
aidraw |
I Draw |
2025-04-17T15:16:55.185Z | 2026-04-28T16:12:31.374Z |
| cve-2025-39425 | 4.3 (v3.1) | WordPress Style Manager plugin <= 2.2.7 - Cross Site R… |
pixelgrade |
Style Manager |
2025-04-17T15:17:04.438Z | 2026-04-28T16:12:31.347Z |
| cve-2025-39429 | 7.5 (v3.1) | WordPress Széchenyi 2020 Logo <= 1.1 - Local File Incl… |
Földesi, Mihály |
Széchenyi 2020 Logo |
2025-04-17T15:17:01.096Z | 2026-04-28T16:12:31.312Z |
| cve-2025-39427 | 5.9 (v3.1) | WordPress WP Post to PDF Enhanced plugin <= 1.1.1 - Cr… |
Beth Tucker Long |
WP Post to PDF Enhanced |
2025-04-17T15:17:02.846Z | 2026-04-28T16:12:31.300Z |
| cve-2025-39433 | 7.1 (v3.1) | WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Re… |
beke_ro |
Bknewsticker |
2025-04-17T15:16:57.647Z | 2026-04-28T16:12:31.298Z |
| cve-2025-39422 | 7.1 (v3.1) | WordPress WP Social Bookmarking plugin <= 3.6 - Cross … |
PResponsive |
WP Social Bookmarking |
2025-04-17T15:17:07.040Z | 2026-04-28T16:12:31.281Z |
| cve-2025-39423 | 7.1 (v3.1) | WordPress Add to Header plugin <= 1.0 - CSRF to XSS vu… |
Jenst |
Add to Header |
2025-04-17T15:17:06.219Z | 2026-04-28T16:12:31.277Z |
| cve-2025-39432 | 7.1 (v3.1) | WordPress bbPress2 shortcode whitelist plugin <= 2.2.1… |
antonchanning |
bbPress2 shortcode whitelist |
2025-04-17T15:16:58.469Z | 2026-04-28T16:12:31.275Z |
| cve-2025-39430 | 7.1 (v3.1) | WordPress mLanguage plugin <= 1.6.1 - Cross Site Reque… |
Alexander Rauscha |
mLanguage |
2025-04-17T15:17:00.249Z | 2026-04-28T16:12:31.251Z |
| cve-2025-39417 | 7.1 (v3.1) | WordPress Redirect wordpress to welcome or landing pag… |
Eslam Mahmoud |
Redirect wordpress to welcome or landing page |
2025-04-17T15:17:11.289Z | 2026-04-28T16:12:31.225Z |
| cve-2025-39428 | 5.9 (v3.1) | WordPress Gravity Forms CSS Themes with Fontawesome an… |
Maros Pristas |
Gravity Forms CSS Themes with Fontawesome and Placeholders |
2025-04-17T15:17:01.936Z | 2026-04-28T16:12:31.201Z |
| cve-2025-39421 | 7.1 (v3.1) | WordPress WP Sticky Side Buttons plugin <= 2.1 - Cross… |
Mustafa KUCUK |
WP Sticky Side Buttons |
2025-04-17T15:17:07.891Z | 2026-04-28T16:12:31.115Z |
| cve-2025-39420 | 7.1 (v3.1) | WordPress WP Twitter Button plugin <= 1.4.1 - Cross Si… |
ruudkok |
WP Twitter Button |
2025-04-17T15:17:08.816Z | 2026-04-28T16:12:31.096Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-305 | Vulnérabilité dans SCADA les produits Siemens | 2018-06-26T00:00:00.000000 | 2018-06-26T00:00:00.000000 |
| certfr-2018-avi-304 | Multiples vulnérabilités dans Google Chrome | 2018-06-26T00:00:00.000000 | 2018-06-26T00:00:00.000000 |
| certfr-2018-avi-303 | Multiples vulnérabilités dans les produits Fortinet | 2018-06-25T00:00:00.000000 | 2018-06-25T00:00:00.000000 |
| certfr-2018-avi-302 | Multiples vulnérabilités dans PHP | 2018-06-22T00:00:00.000000 | 2018-06-25T00:00:00.000000 |
| certfr-2018-avi-301 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-06-22T00:00:00.000000 | 2018-06-22T00:00:00.000000 |
| certfr-2018-avi-300 | Multiples vulnérabilités dans phpMyAdmin | 2018-06-22T00:00:00.000000 | 2018-06-22T00:00:00.000000 |
| certfr-2018-avi-299 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-06-21T00:00:00.000000 | 2018-06-21T00:00:00.000000 |
| certfr-2018-avi-298 | Multiples vulnérabilités dans les produits Cisco | 2018-06-21T00:00:00.000000 | 2018-06-21T00:00:00.000000 |
| certfr-2018-avi-297 | Vulnérabilité dans Ruby On Rails | 2018-06-20T00:00:00.000000 | 2018-06-20T00:00:00.000000 |
| certfr-2018-avi-296 | Vulnérabilité dans le noyau Linux de RedHat | 2018-06-20T00:00:00.000000 | 2018-06-20T00:00:00.000000 |
| certfr-2018-avi-295 | Vulnérabilité dans Citrix XenServer | 2018-06-18T00:00:00.000000 | 2018-06-18T00:00:00.000000 |
| certfr-2018-avi-294 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-06-15T00:00:00.000000 | 2018-06-15T00:00:00.000000 |
| certfr-2018-avi-293 | Multiples vulnérabilités dans Tenable Nessus Agent | 2018-06-15T00:00:00.000000 | 2018-06-15T00:00:00.000000 |
| certfr-2018-avi-292 | Vulnérabilité dans le noyau Linux de RedHat | 2018-06-15T00:00:00.000000 | 2018-06-15T00:00:00.000000 |
| certfr-2018-avi-291 | Multiples vulnérabilités dans les produits SAP | 2018-06-14T00:00:00.000000 | 2018-06-14T00:00:00.000000 |
| certfr-2018-avi-290 | Vulnérabilité dans Xen | 2018-06-14T00:00:00.000000 | 2018-06-14T00:00:00.000000 |
| certfr-2018-avi-289 | Multiples vulnérabilités dans Apple Xcode | 2018-06-14T00:00:00.000000 | 2018-06-14T00:00:00.000000 |
| certfr-2018-avi-288 | Multiples vulnérabilités dans Tenable Nessus | 2018-06-14T00:00:00.000000 | 2018-06-14T00:00:00.000000 |
| certfr-2018-avi-287 | Multiples vulnérabilités dans Microsoft ChakraCore | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-286 | Multiples vulnérabilités dans Microsoft Windows | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-285 | Multiples vulnérabilités dans Microsoft Office | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-284 | Multiples vulnérabilités dans Microsoft Edge | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-283 | Multiples vulnérabilités dans Microsoft IE | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-282 | Multiples vulnérabilités dans Google Chrome et Chrome OS | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-281 | Vulnérabilité dans Bind | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-280 | Vulnérabilité dans le noyau Linux de Red Hat | 2018-06-13T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-277 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-06-12T00:00:00.000000 | 2018-06-13T00:00:00.000000 |
| certfr-2018-avi-279 | Multiples vulnérabilités dans SCADA les produits Siemens | 2018-06-12T00:00:00.000000 | 2018-06-12T00:00:00.000000 |
| certfr-2018-avi-278 | Vulnérabilité dans VMware AirWatch Agent | 2018-06-12T00:00:00.000000 | 2018-06-12T00:00:00.000000 |
| certfr-2018-avi-276 | Multiples vulnérabilités dans Asterisk | 2018-06-12T00:00:00.000000 | 2018-06-12T00:00:00.000000 |