Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-27076 | 8.1 (v3.1) | WordPress LuxeDrive theme <= 1.0 - Local File Inclusio… |
Mikado-Themes |
LuxeDrive |
2026-03-25T16:14:54.687Z | 2026-04-28T16:15:01.246Z |
| cve-2026-27075 | 8.1 (v3.1) | WordPress Belfort theme <= 1.0 - Local File Inclusion … |
Mikado-Themes |
Belfort |
2026-03-25T16:14:54.455Z | 2026-04-28T16:15:01.332Z |
| cve-2026-27073 | 7.5 (v3.1) | WordPress Addi – Cuotas que se adaptan a ti plugin <= … |
Addi |
Addi – Cuotas que se adaptan a ti |
2026-03-25T16:14:54.270Z | 2026-04-28T16:15:01.171Z |
| cve-2026-27071 | 9.1 (v3.1) | WordPress WPCafe plugin <= 3.0.7 - Broken Access Contr… |
Arraytics |
WPCafe |
2026-03-25T16:14:54.113Z | 2026-04-29T09:51:57.242Z |
| cve-2026-27054 | 7.1 (v3.1) | WordPress Penci Soledad Data Migrator plugin <= 1.3.1 … |
PenciDesign |
Penci Soledad Data Migrator |
2026-03-25T16:14:53.945Z | 2026-04-28T16:15:00.479Z |
| cve-2026-27051 | 9.8 (v3.1) | WordPress Golo theme <= 1.7.0 - Privilege Escalation v… |
uxper |
Golo |
2026-03-25T16:14:53.781Z | 2026-04-28T16:15:00.856Z |
| cve-2026-27049 | 9.8 (v3.1) | WordPress Jobica Core plugin <= 1.4.2 - Account Takeov… |
NooTheme |
Jobica Core |
2026-03-25T16:14:53.632Z | 2026-04-28T16:14:59.937Z |
| cve-2026-27048 | 8.1 (v3.1) | WordPress The Aisle Core plugin <= 2.0.5 - Local File … |
Elated-Themes |
The Aisle Core |
2026-03-25T16:14:53.467Z | 2026-04-28T16:14:59.959Z |
| cve-2026-27047 | 8.1 (v3.1) | WordPress Curly Core plugin <= 2.1.6 - Local File Incl… |
Mikado-Themes |
Curly Core |
2026-03-25T16:14:53.295Z | 2026-04-28T16:14:59.783Z |
| cve-2026-27046 | 6.5 (v3.1) | WordPress StoreCustomizer plugin <= 2.6.3 - Broken Acc… |
Kaira |
StoreCustomizer |
2026-03-25T16:14:53.119Z | 2026-04-28T16:14:59.910Z |
| cve-2026-27045 | 8.8 (v3.1) | WordPress WooCommerce Infinite Scroll plugin <= 1.6.2 … |
sbthemes |
WooCommerce Infinite Scroll |
2026-03-25T16:14:52.853Z | 2026-04-28T16:14:59.741Z |
| cve-2026-27044 | 9.9 (v3.1) | WordPress Total Poll Lite plugin <= 4.12.0 - Remote Co… |
TotalSuite |
Total Poll Lite |
2026-03-25T16:14:52.650Z | 2026-04-28T16:14:59.700Z |
| cve-2026-27040 | 8.8 (v3.1) | WordPress WZone plugin <= 14.0.31 - Arbitrary File Del… |
AA-Team |
WZone |
2026-03-25T16:14:52.312Z | 2026-04-28T16:14:59.712Z |
| cve-2026-27039 | 8.5 (v3.1) | WordPress WZone plugin <= 14.0.31 - SQL Injection vuln… |
AA-Team |
WZone |
2026-03-25T16:14:52.135Z | 2026-04-28T16:14:59.687Z |
| cve-2026-25469 | 6.5 (v3.1) | WordPress ViaBill – WooCommerce plugin <= 1.1.53 - Set… |
ViaBill for WooCommerce |
ViaBill – WooCommerce |
2026-03-25T16:14:51.967Z | 2026-04-28T16:14:59.669Z |
| cve-2026-25465 | 6.5 (v3.1) | WordPress CP Multi View Event Calendar plugin <= 1.4.… |
codepeople |
CP Multi View Event Calendar |
2026-03-25T16:14:51.810Z | 2026-04-28T16:14:59.404Z |
| cve-2026-25464 | 8.1 (v3.1) | WordPress Jannah theme <= 7.6.4 - Local File Inclusion… |
TieLabs |
Jannah |
2026-03-25T16:14:51.623Z | 2026-04-28T16:14:59.533Z |
| cve-2026-25462 | 6.5 (v3.1) | WordPress avalex plugin <= 3.1.3 - Broken Access Contr… |
avalex |
avalex |
2026-03-25T16:14:51.394Z | 2026-04-28T16:14:59.430Z |
| cve-2026-25461 | 7.1 (v3.1) | WordPress Listeo Core plugin <= 2.0.21 - Reflected Cro… |
purethemes |
Listeo Core |
2026-03-25T16:14:51.182Z | 2026-04-28T16:14:59.337Z |
| cve-2026-25460 | 6.3 (v3.1) | WordPress Ave Core plugin <= 2.9.1 - Broken Access Con… |
LiquidThemes |
Ave Core |
2026-03-25T16:14:51.015Z | 2026-04-28T16:14:59.520Z |
| cve-2026-25458 | 8.1 (v3.1) | WordPress Moments theme <= 2.2 - Local File Inclusion … |
Select-Themes |
Moments |
2026-03-25T16:14:50.862Z | 2026-04-28T16:14:59.342Z |
| cve-2026-25457 | 8.1 (v3.1) | WordPress Mixtape theme <= 2.1 - Local File Inclusion … |
Select-Themes |
Mixtape |
2026-03-25T16:14:50.698Z | 2026-04-28T16:14:59.328Z |
| cve-2026-25456 | 7.3 (v3.1) | WordPress Automated FedEx live/manual rates with shipp… |
Aarsiv Groups |
Automated FedEx live/manual rates with shipping labels |
2026-03-25T16:14:50.530Z | 2026-04-28T16:14:59.355Z |
| cve-2026-25455 | 6.5 (v3.1) | WordPress Product Slider for WooCommerce plugin <= 1.1… |
PickPlugins |
Product Slider for WooCommerce |
2026-03-25T16:14:50.367Z | 2026-04-28T16:14:59.348Z |
| cve-2026-25454 | 6.5 (v3.1) | WordPress The League theme <= 4.4.1 - Broken Access Co… |
MVPThemes |
The League |
2026-03-25T16:14:50.201Z | 2026-04-28T16:14:59.292Z |
| cve-2026-25452 | 7.1 (v3.1) | WordPress Remoji plugin <= 2.2 - Cross Site Scripting … |
WPDO |
Remoji |
2026-03-25T16:14:50.050Z | 2026-04-28T16:14:59.236Z |
| cve-2026-25447 | 9.1 (v3.1) | WordPress Widget Wrangler plugin <= 2.3.9 - Remote Cod… |
Jonathan Daggerhart |
Widget Wrangler |
2026-03-25T16:14:49.882Z | 2026-04-28T16:14:59.087Z |
| cve-2026-25437 | 6.5 (v3.1) | WordPress GZSEO plugin <= 2.0.14 - Broken Access Contr… |
سید محمدامین هاشمی |
GZSEO |
2026-03-25T16:14:49.711Z | 2026-04-28T16:14:58.752Z |
| cve-2026-25435 | 7.1 (v3.1) | WordPress Booking calendar, Appointment Booking System… |
wpdevart |
Booking calendar, Appointment Booking System |
2026-03-25T16:14:49.497Z | 2026-04-28T16:14:58.679Z |
| cve-2026-25430 | 6.5 (v3.1) | WordPress Integration for Mailchimp and Contact Form 7… |
CRM Perks |
Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms |
2026-03-25T16:14:49.329Z | 2026-04-28T16:14:58.488Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2017-avi-018 | Multiples vulnérabilités dans Oracle MySQL | 2017-01-18T00:00:00.000000 | 2017-01-18T00:00:00.000000 |
| certfr-2017-avi-017 | Multiples vulnérabilités dans Oracle Java SE | 2017-01-18T00:00:00.000000 | 2017-01-18T00:00:00.000000 |
| certfr-2017-avi-016 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2017-01-18T00:00:00.000000 | 2017-01-18T00:00:00.000000 |
| certfr-2017-avi-015 | Multiples vulnérabilités dans Citrix Provisionning Services | 2017-01-17T00:00:00.000000 | 2017-01-17T00:00:00.000000 |
| certfr-2017-avi-014 | Multiples vulnérabilités dans Moodle | 2017-01-17T00:00:00.000000 | 2017-01-17T00:00:00.000000 |
| certfr-2017-avi-013 | Multiples vulnérabilités dans ISC BIND | 2017-01-16T00:00:00.000000 | 2017-01-16T00:00:00.000000 |
| certfr-2017-avi-012 | Multiples vulnérabilités dans les produits Juniper | 2017-01-12T00:00:00.000000 | 2017-01-12T00:00:00.000000 |
| certfr-2017-avi-011 | Multiples vulnérabilités dans WordPress | 2017-01-12T00:00:00.000000 | 2017-01-12T00:00:00.000000 |
| certfr-2017-avi-010 | Vulnérabilité dans Microsoft Windows | 2017-01-11T00:00:00.000000 | 2017-01-11T00:00:00.000000 |
| certfr-2017-avi-009 | Vulnérabilité dans Microsoft Office | 2017-01-11T00:00:00.000000 | 2017-01-11T00:00:00.000000 |
| certfr-2017-avi-008 | Multiples vulnérabilités dans Microsoft Edge | 2017-01-11T00:00:00.000000 | 2017-01-11T00:00:00.000000 |
| certfr-2017-avi-007 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2017-01-11T00:00:00.000000 | 2017-01-11T00:00:00.000000 |
| certfr-2017-avi-006 | Multiples vulnérabilités dans Adobe Flash Player | 2017-01-11T00:00:00.000000 | 2017-01-11T00:00:00.000000 |
| certfr-2017-avi-005 | Multiples vulnérabilités dans Adobe Acrobat et Reader | 2017-01-11T00:00:00.000000 | 2017-01-11T00:00:00.000000 |
| certfr-2017-avi-004 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2017-01-11T00:00:00.000000 | 2017-01-11T00:00:00.000000 |
| certfr-2017-avi-003 | Multiples vulnérabilités dans SCADA les produits Rockwell Automation | 2017-01-10T00:00:00.000000 | 2017-01-10T00:00:00.000000 |
| certfr-2017-avi-002 | Multiples vulnérabilités dans Google Android (Nexus) | 2017-01-05T00:00:00.000000 | 2017-01-05T00:00:00.000000 |
| certfr-2017-avi-001 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2017-01-02T00:00:00.000000 | 2017-01-02T00:00:00.000000 |
| certfr-2016-avi-431 | Multiples vulnérabilités dans Mozilla Thunderbird | 2016-12-29T00:00:00.000000 | 2016-12-29T00:00:00.000000 |
| certfr-2016-avi-430 | Vulnérabilité dans les routeurs Netgear | 2016-12-26T00:00:00.000000 | 2016-12-26T00:00:00.000000 |
| certfr-2016-avi-429 | Vulnérabilité dans Cisco CloudCenter Orchestrator Docker Engine | 2016-12-22T00:00:00.000000 | 2016-12-22T00:00:00.000000 |
| certfr-2016-avi-428 | Multiples vulnérabilités dans Citrix XenServer | 2016-12-21T00:00:00.000000 | 2016-12-21T00:00:00.000000 |
| certfr-2016-avi-427 | Vulnérabilité dans VMware vSphere Data Protection (VDP) | 2016-12-21T00:00:00.000000 | 2016-12-21T00:00:00.000000 |
| certfr-2016-avi-426 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2016-12-21T00:00:00.000000 | 2016-12-21T00:00:00.000000 |
| certfr-2016-avi-425 | Vulnérabilité dans VMware ESXi | 2016-12-20T00:00:00.000000 | 2016-12-20T00:00:00.000000 |
| certfr-2016-avi-424 | Vulnérabilité dans Xen | 2016-12-20T00:00:00.000000 | 2016-12-20T00:00:00.000000 |
| certfr-2016-avi-423 | Multiples vulnérabilités dans Samba | 2016-12-19T00:00:00.000000 | 2016-12-19T00:00:00.000000 |
| certfr-2016-avi-422 | Multiples vulnérabilités dans Squid | 2016-12-19T00:00:00.000000 | 2016-12-19T00:00:00.000000 |
| certfr-2016-avi-421 | Vulnérabilité dans SCADA Siemens Desigo PX Web Modules | 2016-12-19T00:00:00.000000 | 2016-12-19T00:00:00.000000 |
| certfr-2016-avi-420 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2016-12-15T00:00:00.000000 | 2016-12-23T00:00:00.000000 |