Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-28966 | 7.1 (v3.1) | WordPress Recent Posts Slider Responsive plugin <= 1.0… |
dilemma123 |
Recent Posts Slider Responsive |
2025-06-06T12:54:32.790Z | 2026-04-28T16:11:51.954Z |
| cve-2025-28964 | 7.1 (v3.1) | WordPress Personal Favicon plugin <= 2.0 - CSRF to Sto… |
mangup |
Personal Favicon |
2025-06-06T12:54:33.252Z | 2026-04-28T16:11:51.901Z |
| cve-2025-28961 | 9.8 (v3.1) | WordPress URL Shortener <= 3.0.7 - PHP Object Injectio… |
Md Yeasin Ul Haider |
URL Shortener |
2025-07-16T11:28:12.145Z | 2026-04-28T16:11:51.884Z |
| cve-2025-28962 | 6.5 (v3.1) | WordPress Advanced Google Universal Analytics plugin <… |
stefanoai |
Advanced Google Universal Analytics |
2025-08-14T10:34:34.593Z | 2026-04-28T16:11:51.858Z |
| cve-2025-28960 | 7.1 (v3.1) | WordPress Evangelische Termine plugin <= 3.3 - Cross S… |
regibaer |
Evangelische Termine |
2025-06-27T11:52:43.019Z | 2026-04-28T16:11:51.743Z |
| cve-2025-28953 | 8.5 (v3.1) | WordPress smart SEO plugin <= 4.0 - SQL Injection Vuln… |
axiomthemes |
smart SEO |
2025-11-06T15:53:18.852Z | 2026-04-28T16:11:51.735Z |
| cve-2025-28959 | 9.3 (v3.1) | WordPress URL Shortener <= 3.0.7 - SQL Injection Vulne… |
Md Yeasin Ul Haider |
URL Shortener |
2025-07-16T11:28:12.621Z | 2026-04-28T16:11:51.708Z |
| cve-2025-28950 | 7.1 (v3.1) | WordPress Post Author plugin <= 1.1.1 - Cross Site Req… |
David Shabtai |
Post Author |
2025-06-06T12:54:35.051Z | 2026-04-28T16:11:51.690Z |
| cve-2025-28958 | 7.1 (v3.1) | WordPress Bg Orthodox Calendar plugin <= 0.13.10 - CSR… |
Vadim Bogaiskov |
Bg Orthodox Calendar |
2025-06-06T12:54:33.704Z | 2026-04-28T16:11:51.685Z |
| cve-2025-28948 | 7.1 (v3.1) | WordPress Mediabay - WordPress Media Library Folders p… |
codedraft |
Mediabay - WordPress Media Library Folders |
2025-06-06T12:54:35.489Z | 2026-04-28T16:11:51.665Z |
| cve-2025-28957 | 6.5 (v3.1) | WordPress OwnerRez API plugin <= 1.2.1 - Cross Site Sc… |
OwnerRez |
OwnerRez API |
2025-07-04T08:42:12.148Z | 2026-04-28T16:11:51.657Z |
| cve-2025-28956 | 7.1 (v3.1) | WordPress Backwp plugin <= 2.0.2 - Reflected Cross Sit… |
wphobby |
Backwp |
2025-06-27T11:52:43.614Z | 2026-04-28T16:11:51.639Z |
| cve-2025-28951 | 9.1 (v3.1) | WordPress Bulk Featured Image plugin <= 1.2.4 - Arbitr… |
CreedAlly |
Bulk Featured Image |
2025-07-04T08:42:11.196Z | 2026-04-28T16:11:51.628Z |
| cve-2025-28952 | 4.3 (v3.1) | WordPress CubePoints plugin <= 3.2.1 - Cross Site Requ… |
Jonathan Lau |
CubePoints |
2025-06-06T12:54:34.612Z | 2026-04-28T16:11:51.627Z |
| cve-2025-28955 | 7.5 (v3.1) | WordPress Easy Video Player Wordpress & WooCommerce pl… |
FWDesign |
Easy Video Player Wordpress & WooCommerce |
2025-07-16T11:28:13.092Z | 2026-04-28T16:11:51.623Z |
| cve-2025-28954 | 7.4 (v3.1) | WordPress Backwp plugin <= 2.0.2 - CSRF to Arbitrary F… |
wphobby |
Backwp |
2025-06-06T12:54:34.160Z | 2026-04-28T16:11:51.622Z |
| cve-2025-28944 | 8.1 (v3.1) | WordPress Avaz theme <= 2.8 - Local File Inclusion Vul… |
snstheme |
Avaz |
2025-06-09T15:56:52.076Z | 2026-04-28T16:11:51.604Z |
| cve-2025-28943 | 5.9 (v3.1) | WordPress DP ALTerminator - Missing ALT manager Plugin… |
mylo2h2s |
DP ALTerminator - Missing ALT manager |
2025-03-11T21:01:18.833Z | 2026-04-28T16:11:51.597Z |
| cve-2025-28946 | 8.1 (v3.1) | WordPress PrintXtore theme < 1.7.8 - Local File Inclus… |
BZOTheme |
PrintXtore |
2025-06-27T11:52:44.803Z | 2026-04-28T16:11:51.595Z |
| cve-2025-28947 | 8.1 (v3.1) | WordPress MBStore - Digital WooCommerce WordPress Them… |
snstheme |
MBStore - Digital WooCommerce WordPress Theme |
2025-06-27T11:52:44.192Z | 2026-04-28T16:11:51.572Z |
| cve-2025-28945 | 8.1 (v3.1) | WordPress Valen - Sport, Fashion WooCommerce WordPress… |
snstheme |
Valen - Sport, Fashion WooCommerce WordPress Theme |
2025-06-09T15:56:51.055Z | 2026-04-28T16:11:51.535Z |
| cve-2025-28949 | 8.5 (v3.1) | WordPress Mediabay - WordPress Media Library Folders <… |
Codedraft |
Mediabay - WordPress Media Library Folders |
2025-12-31T20:00:22.463Z | 2026-04-28T16:11:51.525Z |
| cve-2025-28941 | 4.3 (v3.1) | WordPress SPAM-BYBYE Plugin <= 2.2.4 - Cross Site Requ… |
ohtan |
Spam Byebye |
2025-03-11T21:01:18.173Z | 2026-04-28T16:11:51.508Z |
| cve-2025-28942 | 9.3 (v3.1) | WordPress Trust Payments Gateway for WooCommerce plugi… |
Trust Payments |
Trust Payments Gateway for WooCommerce |
2025-03-26T14:24:25.967Z | 2026-04-28T16:11:51.498Z |
| cve-2025-28940 | 4.3 (v3.1) | WordPress Back To Top Plugin <= 2.0 - Cross Site Reque… |
arkapravamajumder |
Back To Top |
2025-03-11T21:01:17.414Z | 2026-04-28T16:11:51.423Z |
| cve-2025-28939 | 8.5 (v3.1) | WordPress WP Google Calendar Manager plugin <= 2.1 - S… |
EuroCizia |
WP Google Calendar Manager |
2025-03-26T14:24:25.810Z | 2026-04-28T16:11:51.268Z |
| cve-2025-28937 | 5.9 (v3.1) | WordPress Lava Ajax Search plugin <= 1.1.9 - Cross Sit… |
lavacode |
Lava Ajax Search |
2025-03-11T21:01:15.978Z | 2026-04-28T16:11:51.258Z |
| cve-2025-28936 | 5.9 (v3.1) | WordPress Lunar plugin <= 1.3.0 - Cross Site Scripting… |
sakurapixel |
Lunar |
2025-03-11T21:01:15.254Z | 2026-04-28T16:11:51.224Z |
| cve-2025-28934 | 7.1 (v3.1) | WordPress Simple Post Series plugin <= 2.4.4 - Reflect… |
chaozh |
Simple Post Series |
2025-03-26T14:24:25.448Z | 2026-04-28T16:11:51.150Z |
| cve-2025-28938 | 4.3 (v3.1) | WordPress WP Performance Pack plugin <= 2.5.3 - Broken… |
Bjoern |
WP Performance Pack |
2025-03-11T21:01:16.712Z | 2026-04-28T16:11:51.094Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-212 | Multiples vulnérabilités dans les produits Huawei | 2014-05-07T00:00:00.000000 | 2014-05-07T00:00:00.000000 |
| certfr-2014-avi-211 | Multiples vulnérabilités dans plusieurs produits Cisco | 2014-05-05T00:00:00.000000 | 2014-05-05T00:00:00.000000 |
| certfr-2014-avi-210 | Vulnérabilité dans Microsoft Internet Explorer | 2014-05-02T00:00:00.000000 | 2014-05-02T00:00:00.000000 |
| certfr-2014-avi-209 | Multiples vulnérabilités dans les produits Mozilla | 2014-04-30T00:00:00.000000 | 2014-04-30T00:00:00.000000 |
| certfr-2014-avi-208 | Multiples vulnérabilités dans Apache Struts | 2014-04-29T00:00:00.000000 | 2014-04-29T00:00:00.000000 |
| certfr-2014-avi-207 | Vulnérabilité dans Adobe Flash Player | 2014-04-29T00:00:00.000000 | 2014-04-29T00:00:00.000000 |
| certfr-2014-avi-206 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2014-04-28T00:00:00.000000 | 2014-04-28T00:00:00.000000 |
| certfr-2014-avi-205 | Vulnérabilité dans Xen | 2014-04-24T00:00:00.000000 | 2014-04-24T00:00:00.000000 |
| certfr-2014-avi-204 | Vulnérabilité dans Huawei Quidway | 2014-04-23T00:00:00.000000 | 2014-04-23T00:00:00.000000 |
| certfr-2014-avi-203 | Vulnérabilité dans Xen | 2014-04-23T00:00:00.000000 | 2014-04-23T00:00:00.000000 |
| certfr-2014-avi-202 | Vulnérabilité dans Wireshark | 2014-04-23T00:00:00.000000 | 2014-04-23T00:00:00.000000 |
| certfr-2014-avi-201 | Multiples vulnérabilités dans les produits Apple | 2014-04-23T00:00:00.000000 | 2014-04-23T00:00:00.000000 |
| certfr-2014-avi-200 | Multiples vulnérabilités dans F5 | 2014-04-22T00:00:00.000000 | 2014-04-22T00:00:00.000000 |
| certfr-2014-avi-199 | Multiples vulnérabilités dans les produits IBM | 2014-04-22T00:00:00.000000 | 2014-04-22T00:00:00.000000 |
| certfr-2014-avi-198 | Vulnérabilité dans Apache Tomcat | 2014-04-18T00:00:00.000000 | 2014-04-18T00:00:00.000000 |
| certfr-2014-avi-197 | Vulnérabilité dans les produits Huawei | 2014-04-18T00:00:00.000000 | 2014-04-18T00:00:00.000000 |
| certfr-2014-avi-196 | Multiples vulnérabilités dans MariaDB | 2014-04-18T00:00:00.000000 | 2014-04-18T00:00:00.000000 |
| certfr-2014-avi-195 | Multiples vulnérabilités dans le système SCADA Siemens SINEMA Server | 2014-04-18T00:00:00.000000 | 2014-04-18T00:00:00.000000 |
| certfr-2014-avi-194 | Multiples vulnérabilités dans EMC Cloud Tiering Appliance | 2014-04-17T00:00:00.000000 | 2014-04-17T00:00:00.000000 |
| certfr-2014-avi-193 | Multiples vulnérabilités dans Xerox FreeFlow Print Server | 2014-04-17T00:00:00.000000 | 2014-04-17T00:00:00.000000 |
| certfr-2014-avi-192 | Vulnérabilité dans HP Network Node Manager I | 2014-04-17T00:00:00.000000 | 2014-04-17T00:00:00.000000 |
| certfr-2014-avi-190 | Vulnérabilité dans Drupal | 2014-04-17T00:00:00.000000 | 2014-04-17T00:00:00.000000 |
| certfr-2014-avi-189 | Vulnérabilité dans strongSwan | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-188 | Multiples vulnérabilités dans Oracle MySQL | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-187 | Multiples vulnérabilités dans Oracle Virtualization | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-186 | Multiples vulnérabilités dans Oracle Solaris | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-185 | Multiples vulnérabilités dans Oracle Java SE | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-184 | Multiples vulnérabilités dans les produits Oracle PeopleSoft | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-183 | Multiples vulnérabilités dans Oracle Database | 2014-04-16T00:00:00.000000 | 2014-04-16T00:00:00.000000 |
| certfr-2014-avi-182 | Multiples vulnérabilités dans F5 ARX | 2014-04-15T00:00:00.000000 | 2014-04-15T00:00:00.000000 |