Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-31430 | 9.8 (v3.1) | WordPress The Business <= 1.6.1 - PHP Object Injection… |
themeton |
The Business |
2025-05-23T12:44:06.320Z | 2026-04-28T16:12:06.910Z |
| cve-2025-31431 | 7.1 (v3.1) | WordPress WP Bookmarks plugin <= 1.1 - Reflected Cross… |
conlabz GmbH |
WP Bookmarks |
2025-04-01T20:58:09.812Z | 2026-04-28T16:12:06.909Z |
| cve-2025-31427 | 7.1 (v3.1) | WordPress Invico - WordPress Consulting Business Theme… |
designthemes |
Invico - WordPress Consulting Business Theme |
2025-07-16T11:28:05.193Z | 2026-04-28T16:12:06.903Z |
| cve-2025-31413 | 4.3 (v3.1) | WordPress Element Pack Elementor Addons plugin <= 8.3.… |
bdthemes |
Element Pack Elementor Addons |
2026-01-22T16:51:38.938Z | 2026-04-28T16:12:06.898Z |
| cve-2025-31426 | 7.1 (v3.1) | WordPress Sticky Radio Player plugin <= 3.4 - Reflecte… |
LambertGroup |
Sticky Radio Player |
2025-06-09T15:56:37.872Z | 2026-04-28T16:12:06.885Z |
| cve-2025-31424 | 9.3 (v3.1) | WordPress WP Lead Capturing Pages plugin < 2.6 - SQL I… |
kamleshyadav |
WP Lead Capturing Pages |
2025-06-09T15:56:38.948Z | 2026-04-28T16:12:06.876Z |
| cve-2025-31423 | 9.8 (v3.1) | WordPress Umberto theme <= 1.2.8 - PHP Object Injectio… |
AncoraThemes |
Umberto |
2025-05-23T12:44:06.784Z | 2026-04-28T16:12:06.875Z |
| cve-2025-31429 | 9.8 (v3.1) | WordPress PressGrid - Frontend Publish Reaction & Mult… |
themeton |
PressGrid - Frontend Publish Reaction & Multimedia Theme |
2025-06-09T15:56:36.838Z | 2026-04-28T16:12:06.844Z |
| cve-2025-31419 | 6.5 (v3.1) | WordPress Churel plugin <= 1.0.8 - Cross Site Scriptin… |
Themeix |
Churel |
2025-03-31T10:50:01.087Z | 2026-04-28T16:12:06.826Z |
| cve-2025-31422 | 8.8 (v3.1) | WordPress Visual Art | Gallery WordPress Theme <= 2.4 … |
designthemes |
Visual Art | Gallery WordPress Theme |
2025-07-16T11:28:05.668Z | 2026-04-28T16:12:06.776Z |
| cve-2025-31425 | 7.5 (v3.1) | WordPress WP Lead Capturing Pages plugin < 2.6 - Arbit… |
kamleshyadav |
WP Lead Capturing Pages |
2025-08-14T10:34:27.684Z | 2026-04-28T16:12:06.608Z |
| cve-2025-31416 | 7.1 (v3.1) | WordPress Awesome Event Booking plugin <= 2.8.4 - Refl… |
AwesomeTOGI |
Awesome Event Booking |
2025-04-04T13:21:57.498Z | 2026-04-28T16:12:06.604Z |
| cve-2025-31398 | 9.8 (v3.1) | WordPress PIMP - Creative MultiPurpose <= 1.7 - Deseri… |
themeton |
PIMP - Creative MultiPurpose |
2025-06-09T15:56:40.019Z | 2026-04-28T16:12:06.532Z |
| cve-2025-31397 | 9.3 (v3.1) | WordPress Bus Ticket Booking with Seat Reservation for… |
smartcms |
Bus Ticket Booking with Seat Reservation for WooCommerce |
2025-05-23T12:44:07.240Z | 2026-04-28T16:12:06.488Z |
| cve-2025-31406 | 4.3 (v3.1) | WordPress ELEX WooCommerce Request a Quote plugin <= 2… |
ELEXtensions |
ELEX WooCommerce Request a Quote |
2025-03-31T08:34:52.142Z | 2026-04-28T16:12:06.417Z |
| cve-2025-31412 | 6.5 (v3.1) | WordPress JetProductGallery plugin <= 2.1.22 - Cross S… |
Crocoblock |
JetProductGallery |
2025-03-31T06:07:11.670Z | 2026-04-28T16:12:06.344Z |
| cve-2025-31401 | 7.1 (v3.1) | WordPress MMX – Make Me Christmas plugin <= 1.0.0 - CS… |
mmetrodw |
MMX – Make Me Christmas |
2025-04-09T16:09:58.891Z | 2026-04-28T16:12:06.307Z |
| cve-2025-31415 | 7.6 (v3.1) | WordPress YayExtra <= 1.5.2 - Broken Access Control Vu… |
YayCommerce |
YayExtra |
2025-04-01T05:31:42.561Z | 2026-04-28T16:12:06.286Z |
| cve-2025-31400 | 7.1 (v3.1) | WordPress WS Audio Player plugin <= 1.1.8 - CSRF to St… |
icyleaf |
WS Audio Player |
2025-04-09T16:09:59.594Z | 2026-04-28T16:12:06.241Z |
| cve-2025-31414 | 6.5 (v3.1) | WordPress Cost Calculator Builder plugin <= 3.2.65 - C… |
Stylemix |
Cost Calculator Builder |
2025-03-31T06:07:11.895Z | 2026-04-28T16:12:06.218Z |
| cve-2025-31405 | 7.5 (v3.1) | WordPress Fami WooCommerce Compare plugin <= 1.0.5 - L… |
zankover |
Fami WooCommerce Compare |
2025-04-04T13:26:10.946Z | 2026-04-28T16:12:06.211Z |
| cve-2025-31404 | 7.1 (v3.1) | WordPress AF Tell a Friend plugin <= 1.4 - CSRF to Sto… |
Wladyslaw Madejczyk |
AF Tell a Friend |
2025-04-09T16:09:57.664Z | 2026-04-28T16:12:06.195Z |
| cve-2025-31407 | 6.5 (v3.1) | WordPress Tiger theme <= 2.0 - Cross Site Scripting (X… |
hutsixdigital |
Tiger |
2025-04-04T13:24:56.744Z | 2026-04-28T16:12:06.194Z |
| cve-2025-31399 | 7.1 (v3.1) | WordPress CG Scroll To Top plugin <= 3.5 - CSRF to Sto… |
Chandan Garg |
CG Scroll To Top |
2025-04-09T16:10:00.303Z | 2026-04-28T16:12:06.119Z |
| cve-2025-31402 | 7.1 (v3.1) | WordPress NewsBoard Post and RSS Scroller plugin <= 1.… |
NewsBoard Plugin |
NewsBoard Post and RSS Scroller |
2025-04-09T16:09:58.306Z | 2026-04-28T16:12:06.113Z |
| cve-2025-31409 | 6.5 (v3.1) | WordPress Bridge Core plugin < 3.3.1 - Cross Site Scri… |
NotFound |
Bridge Core |
2025-04-01T05:32:24.989Z | 2026-04-28T16:12:06.089Z |
| cve-2025-31403 | 9.3 (v3.1) | WordPress Booking Calendar and Notification plugin <= … |
shiptrack |
Booking Calendar and Notification |
2025-04-04T13:34:42.539Z | 2026-04-28T16:12:06.054Z |
| cve-2025-31408 | 4.3 (v3.1) | WordPress Zoho Flow plugin <= 2.13.3 - Broken Access C… |
Zoho Flow |
Zoho Flow |
2025-04-01T13:07:54.459Z | 2026-04-28T16:12:06.042Z |
| cve-2025-31410 | 4.3 (v3.1) | WordPress WP Church Donation plugin <= 1.7 - Cross Sit… |
Ashish Ajani |
WP Church Donation |
2025-03-31T08:29:07.022Z | 2026-04-28T16:12:06.013Z |
| cve-2025-31396 | 9.8 (v3.1) | WordPress FLAP - Business WordPress Theme <= 1.5 - PHP… |
themeton |
FLAP - Business WordPress Theme |
2025-06-09T15:56:40.939Z | 2026-04-28T16:12:05.794Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2015-avi-267 | Vulnérabilité dans le module de communication Siemens Climatix BACnet/IP | 2015-06-26T00:00:00.000000 | 2015-06-26T00:00:00.000000 |
| certfr-2015-avi-266 | Multiples vulnérabilités dans les produits Cisco | 2015-06-26T00:00:00.000000 | 2015-06-26T00:00:00.000000 |
| certfr-2015-avi-265 | Multiples vulnérabilités dans PHP | 2015-06-24T00:00:00.000000 | 2015-06-24T00:00:00.000000 |
| certfr-2015-avi-264 | Vulnérabilité dans GnuTLS | 2015-06-24T00:00:00.000000 | 2015-06-24T00:00:00.000000 |
| certfr-2015-avi-263 | Multiples vulnérabilités dans le noyau Linux Red Hat | 2015-06-24T00:00:00.000000 | 2015-06-24T00:00:00.000000 |
| certfr-2015-avi-262 | Vulnérabilité dans Adobe Flash Player | 2015-06-23T00:00:00.000000 | 2015-06-23T00:00:00.000000 |
| certfr-2015-avi-261 | Multiples vulnérabilités dans le noyau Linux Debian | 2015-06-22T00:00:00.000000 | 2015-06-22T00:00:00.000000 |
| certfr-2015-avi-260 | Multiples vulnérabilités dans Drupal | 2015-06-18T00:00:00.000000 | 2015-06-18T00:00:00.000000 |
| certfr-2015-avi-259 | Multiples vulnérabilités dans les produits BlueCoat | 2015-06-17T00:00:00.000000 | 2015-06-17T00:00:00.000000 |
| certfr-2015-avi-258 | Vulnérabilité dans Huawei E5756s | 2015-06-16T00:00:00.000000 | 2015-06-16T00:00:00.000000 |
| certfr-2015-avi-257 | Multiples vulnérabilités dans OpenSSL | 2015-06-12T00:00:00.000000 | 2015-06-12T00:00:00.000000 |
| certfr-2015-avi-256 | Vulnérabilité dans Cisco IOS XR | 2015-06-12T00:00:00.000000 | 2015-06-12T00:00:00.000000 |
| certfr-2015-avi-255 | Multiples vulnérabilités dans Citrix XenServer | 2015-06-12T00:00:00.000000 | 2015-06-12T00:00:00.000000 |
| certfr-2015-avi-254 | Multiples vulnérabilités dans le noyau Linux Ubuntu | 2015-06-11T00:00:00.000000 | 2015-06-11T00:00:00.000000 |
| certfr-2015-avi-253 | Multiples vulnérabilités dans Adobe Flash Player | 2015-06-11T00:00:00.000000 | 2015-06-11T00:00:00.000000 |
| certfr-2015-avi-252 | Vulnérabilité dans QEMU | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-251 | Multiples vulnérabilités dans Microsoft Exchange Server | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-250 | Vulnérabilité dans le noyau de Microsoft Windows | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-249 | Vulnérabilité dans Microsoft Active Directory Federation Services | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-248 | Multiples vulnérabilités dans le noyau de Microsoft Windows | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-247 | Vulnérabilité dans Microsoft Common Controls | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-246 | Multiples vulnérabilités dans Microsoft Office | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-245 | Vulnérabilité dans Microsoft Windows Media Player | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-244 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2015-06-10T00:00:00.000000 | 2015-06-10T00:00:00.000000 |
| certfr-2015-avi-243 | Multiples vulnérabilités dans le noyau Linux Red Hat | 2015-06-09T00:00:00.000000 | 2015-06-09T00:00:00.000000 |
| certfr-2015-avi-242 | Multiples vulnérabilités dans Xen | 2015-06-03T00:00:00.000000 | 2015-06-03T00:00:00.000000 |
| certfr-2015-avi-241 | Multiples vulnérabilités dans Blue Coat SSL Visibility | 2015-06-02T00:00:00.000000 | 2015-06-02T00:00:00.000000 |
| certfr-2015-avi-240 | Vulnérabilité dans le produit SCADA Schneider OPC Factory Server | 2015-06-01T00:00:00.000000 | 2015-06-01T00:00:00.000000 |
| certfr-2015-avi-239 | Multiples vulnérabilités dans PostgreSQL | 2015-05-29T00:00:00.000000 | 2015-05-29T00:00:00.000000 |
| certfr-2015-avi-238 | Vulnérabilité dans le noyau Linux Red Hat | 2015-05-28T00:00:00.000000 | 2015-05-28T00:00:00.000000 |