Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-28870 | 6.5 (v3.1) | WordPress amoCRM WebForm plugin <= 1.1 - Cross Site Sc… |
amocrm |
amoCRM WebForm |
2025-03-11T21:00:38.190Z | 2026-04-28T16:11:49.412Z |
| cve-2025-28872 | 5.3 (v3.1) | WordPress Block Spam By Math Reloaded plugin <= 2.2.4 … |
jwpegram |
Block Spam By Math Reloaded |
2025-03-11T21:00:39.635Z | 2026-04-28T16:11:49.409Z |
| cve-2025-28869 | 7.1 (v3.1) | WordPress NextGEN Gallery Voting plugin <= 2.7.6 - Ref… |
shauno |
NextGEN Gallery Voting |
2025-03-26T14:24:21.942Z | 2026-04-28T16:11:49.347Z |
| cve-2025-28868 | 4.3 (v3.1) | WordPress ZipList Recipe plugin <= 3.1 - Cross Site Re… |
ZipList |
ZipList Recipe |
2025-03-11T21:01:57.929Z | 2026-04-28T16:11:49.314Z |
| cve-2025-28865 | 7.1 (v3.1) | WordPress WP Colorful Tag Cloud plugin <= 2.0.1 - Refl… |
lionelroux |
WP Colorful Tag Cloud |
2025-03-26T14:24:21.770Z | 2026-04-28T16:11:49.310Z |
| cve-2025-28866 | 4.3 (v3.1) | WordPress Login Logger plugin <= 1.2.1 - Cross Site Re… |
smerriman |
Login Logger |
2025-03-11T21:00:36.058Z | 2026-04-28T16:11:49.277Z |
| cve-2025-28860 | 7.1 (v3.1) | WordPress Google News Editors Picks Feed Generator plu… |
PPDPurveyor |
Google News Editors Picks Feed Generator |
2025-03-11T21:00:32.290Z | 2026-04-28T16:11:49.247Z |
| cve-2025-27360 | 4.3 (v3.1) | WordPress Quick Event Calendar plugin <= 1.4.9 - Cross… |
WP Corner |
Quick Event Calendar |
2025-06-06T12:54:35.952Z | 2026-04-28T16:11:49.232Z |
| cve-2025-28867 | 4.3 (v3.1) | WordPress Frontpage category filter plugin <= 1.0.2 - … |
stesvis |
Frontpage category filter |
2025-03-11T21:00:36.818Z | 2026-04-28T16:11:49.227Z |
| cve-2025-28857 | 7.1 (v3.1) | WordPress Rankchecker.io Integration plugin <= 1.0.9 -… |
rankchecker |
Rankchecker.io Integration |
2025-03-11T21:00:30.828Z | 2026-04-28T16:11:49.204Z |
| cve-2025-27362 | 8.1 (v3.1) | WordPress Petito theme < 1.6.6 - Local File Inclusion … |
BZOTheme |
Petito |
2025-06-09T15:56:53.575Z | 2026-04-28T16:11:49.200Z |
| cve-2025-28863 | 4.3 (v3.1) | WordPress Delete Original Image plugin <= 0.4 - Cross … |
Carlos Minatti |
Delete Original Image |
2025-03-11T21:00:34.607Z | 2026-04-28T16:11:49.198Z |
| cve-2025-28861 | 7.1 (v3.1) | WordPress WP jQuery Persian Datepicker plugin <= 0.1.0… |
bhzad |
WP jQuery Persian Datepicker |
2025-03-11T21:00:33.023Z | 2026-04-28T16:11:49.194Z |
| cve-2025-27361 | 7.1 (v3.1) | WordPress Photo Express for Google plugin <= 0.3.2 - R… |
thhake |
Photo Express for Google |
2025-06-27T11:52:45.537Z | 2026-04-28T16:11:49.193Z |
| cve-2025-28859 | 4.3 (v3.1) | WordPress Maintenance Notice plugin <= 1.0.6 - Cross S… |
CodeVibrant |
Maintenance Notice |
2025-03-11T21:00:31.578Z | 2026-04-28T16:11:49.187Z |
| cve-2025-28864 | 4.3 (v3.1) | WordPress Builder for Contact Form 7 by Webconstruct p… |
planetstudio |
Builder for Contact Form 7 by Webconstruct |
2025-03-11T21:00:35.309Z | 2026-04-28T16:11:49.176Z |
| cve-2025-28862 | 4.3 (v3.1) | WordPress Comment Date and Gravatar remover plugin <= … |
Venugopal |
Comment Date and Gravatar remover |
2025-03-11T21:00:33.838Z | 2026-04-28T16:11:49.165Z |
| cve-2025-28855 | 7.1 (v3.1) | WordPress Teleport plugin <= 1.2.4 - Reflected Cross S… |
srcoley |
Teleport |
2025-03-26T14:24:21.408Z | 2026-04-28T16:11:49.164Z |
| cve-2025-28856 | 4.3 (v3.1) | WordPress W3Counter Free Real-Time Web Stats plugin <=… |
dangrossman |
W3Counter Free Real-Time Web Stats |
2025-03-11T21:00:30.006Z | 2026-04-28T16:11:49.162Z |
| cve-2025-27359 | 4.3 (v3.1) | WordPress WP Media File Type Manager plugin <= 2.3.1 -… |
Seerox |
WP Media File Type Manager |
2025-06-06T12:54:36.408Z | 2026-04-28T16:11:49.106Z |
| cve-2025-27358 | 4.6 (v3.1) | WordPress Frontend File Manager plugin <= 23.6 - Conte… |
N-Media |
Frontend File Manager |
2025-07-04T08:42:10.238Z | 2026-04-28T16:11:49.020Z |
| cve-2025-27357 | 4.3 (v3.1) | WordPress Önceki Yazı Link Plugin <= 1.3 - Cross Site … |
Musa AVCI |
Önceki Yazı Link |
2025-02-24T14:49:27.292Z | 2026-04-28T16:11:49.020Z |
| cve-2025-27356 | 5.4 (v3.1) | WordPress Sticky Header On Scroll plugin <= 1.0 - Brok… |
Hardik |
Sticky Header On Scroll |
2025-02-24T14:49:26.583Z | 2026-04-28T16:11:49.000Z |
| cve-2025-27355 | 7.1 (v3.1) | WordPress Woocommerce – Loi Hamon Plugin <= 1.1.0 - CS… |
Nicolas GRILLET |
Woocommerce – Loi Hamon |
2025-02-24T14:49:25.894Z | 2026-04-28T16:11:48.924Z |
| cve-2025-27354 | 7.1 (v3.1) | WordPress Simple Email Subscriber plugin <= 2.3 - Refl… |
phil88530 |
Simple Email Subscriber |
2025-04-17T15:47:53.098Z | 2026-04-28T16:11:48.904Z |
| cve-2025-27345 | 7.1 (v3.1) | WordPress Booking Ultra Pro Plugin <= 1.1.19 - Reflec… |
Deetronix |
Booking Ultra Pro |
2025-04-17T15:47:54.277Z | 2026-04-28T16:11:48.880Z |
| cve-2025-27350 | 7.1 (v3.1) | WordPress Vice Versa plugin <= 2.2.3 - Reflected Cross… |
Hugh Mungus |
Vice Versa |
2025-04-10T10:21:37.799Z | 2026-04-28T16:11:48.879Z |
| cve-2025-27343 | 7.1 (v3.1) | WordPress WooCommerce HTML5 Video Plugin <= 1.7.10 - R… |
Webilop |
WooCommerce HTML5 Video |
2025-04-17T15:47:54.840Z | 2026-04-28T16:11:48.847Z |
| cve-2025-27347 | 6.5 (v3.1) | WordPress Direct Checkout Button for WooCommerce plugi… |
techmix |
Direct Checkout Button for WooCommerce |
2025-02-24T14:49:21.465Z | 2026-04-28T16:11:48.830Z |
| cve-2025-27353 | 4.3 (v3.1) | WordPress Namaste! LMS Plugin <= 2.6.5 - Cross Site Re… |
Bob |
Namaste! LMS |
2025-02-24T14:49:25.170Z | 2026-04-28T16:11:48.829Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-091 | Multiples vulnérabilités dans IBM AIX | 2014-02-26T00:00:00.000000 | 2014-02-26T00:00:00.000000 |
| certfr-2014-avi-090 | Multiples vulnérabilités dans Apple QuickTime | 2014-02-26T00:00:00.000000 | 2014-02-26T00:00:00.000000 |
| certfr-2014-avi-089 | Multiples vulnérabilités dans HP XP P9000 Performance Advisor Software | 2014-02-25T00:00:00.000000 | 2014-02-25T00:00:00.000000 |
| certfr-2014-avi-088 | Vulnérabilité dans McAfee ePolicy Orchestrator | 2014-02-25T00:00:00.000000 | 2014-02-25T00:00:00.000000 |
| certfr-2014-avi-087 | Multiples vulnérabilités dans HP Application Information Optimizer | 2014-02-25T00:00:00.000000 | 2014-02-25T00:00:00.000000 |
| certfr-2014-avi-086 | Vulnérabilité dans Cisco Firewall Services Module | 2014-02-24T00:00:00.000000 | 2014-02-24T00:00:00.000000 |
| certfr-2014-avi-085 | Vulnérabilité dans Cisco Unified Computing System | 2014-02-24T00:00:00.000000 | 2014-02-24T00:00:00.000000 |
| certfr-2014-avi-084 | Multiples vulnérabilités dans Cisco IPS Software | 2014-02-24T00:00:00.000000 | 2014-02-24T00:00:00.000000 |
| certfr-2014-avi-083 | Vulnérabilité dans Cisco Unified SIP Phone 3905 | 2014-02-24T00:00:00.000000 | 2014-02-24T00:00:00.000000 |
| certfr-2014-avi-082 | Multiples vulnérabilités dans HP Service Manager | 2014-02-24T00:00:00.000000 | 2014-02-24T00:00:00.000000 |
| certfr-2014-avi-081 | Vulnérabilité dans les produits Apple | 2014-02-24T00:00:00.000000 | 2014-02-24T00:00:00.000000 |
| certfr-2014-avi-080 | Multiples vulnérabilités dans PostgreSQL | 2014-02-21T00:00:00.000000 | 2014-02-21T00:00:00.000000 |
| certfr-2014-avi-079 | Multiples vulnérabilités dans Google Chrome | 2014-02-21T00:00:00.000000 | 2014-02-21T00:00:00.000000 |
| certfr-2014-avi-078 | Multiples vulnérabilités dans Adobe Flash Player | 2014-02-21T00:00:00.000000 | 2014-02-21T00:00:00.000000 |
| certfr-2014-avi-077 | Multiples vulnérabilités dans Ruby On Rails | 2014-02-19T00:00:00.000000 | 2014-02-19T00:00:00.000000 |
| certfr-2014-avi-076 | Vulnérabilité dans Citrix ShareFile Mobile | 2014-02-19T00:00:00.000000 | 2014-02-19T00:00:00.000000 |
| certfr-2014-avi-075 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2014-02-19T00:00:00.000000 | 2014-02-19T00:00:00.000000 |
| certfr-2014-avi-074 | Vulnérabilité dans Xen | 2014-02-18T00:00:00.000000 | 2014-02-18T00:00:00.000000 |
| certfr-2014-avi-073 | Multiples vulnérabilités dans le noyau Linux de Mandriva | 2014-02-18T00:00:00.000000 | 2014-02-18T00:00:00.000000 |
| certfr-2014-avi-072 | Multiples vulnérabilités dans Symantec Endpoint Protection Manager | 2014-02-17T00:00:00.000000 | 2014-02-17T00:00:00.000000 |
| certfr-2014-avi-071 | Vulnérabilité dans GnuTLS | 2014-02-17T00:00:00.000000 | 2014-02-17T00:00:00.000000 |
| certfr-2014-avi-070 | Vulnérabilité dans phpMyAdmin | 2014-02-17T00:00:00.000000 | 2014-02-17T00:00:00.000000 |
| certfr-2014-avi-069 | Multiples vulnérabilités dans les produits Juniper | 2014-02-13T00:00:00.000000 | 2014-02-13T00:00:00.000000 |
| certfr-2014-avi-068 | Vulnérabilité dans Apple Boot Camp | 2014-02-13T00:00:00.000000 | 2014-02-13T00:00:00.000000 |
| certfr-2014-avi-067 | Multiples vulnérabilités dans Adobe Shockwave Player | 2014-02-12T00:00:00.000000 | 2014-02-12T00:00:00.000000 |
| certfr-2014-avi-066 | Vulnérabilité dans le moteur de script VBScript de Microsoft | 2014-02-12T00:00:00.000000 | 2014-02-12T00:00:00.000000 |
| certfr-2014-avi-065 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2014-02-12T00:00:00.000000 | 2014-02-12T00:00:00.000000 |
| certfr-2014-avi-064 | Multiples vulnérabilités dans Microsoft .NET Framework | 2014-02-12T00:00:00.000000 | 2014-02-12T00:00:00.000000 |
| certfr-2014-avi-063 | Vulnérabilité dans Microsoft Forefront Protection | 2014-02-12T00:00:00.000000 | 2014-02-12T00:00:00.000000 |
| certfr-2014-avi-062 | Vulnérabilité dans Microsoft Direct2D | 2014-02-12T00:00:00.000000 | 2014-02-12T00:00:00.000000 |