Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68836 | 7.1 (v3.1) | WordPress Table of Contents Creator plugin <= 1.6.4.1 … |
Markbeljaars |
Table of Contents Creator |
2026-03-19T08:33:02.946Z | 2026-04-28T16:14:31.682Z |
| cve-2025-67618 | 7.1 (v3.1) | WordPress Brookside theme <= 1.4 - Reflected Cross Sit… |
ArtstudioWorks |
Brookside |
2026-03-19T08:31:39.918Z | 2026-04-28T16:14:22.615Z |
| cve-2025-62043 | 6.5 (v3.1) | WordPress WPCasa plugin <= 1.4.1 - Cross Site Scriptin… |
WPSight |
WPCasa |
2026-03-19T08:25:18.077Z | 2026-04-28T16:13:59.624Z |
| cve-2025-60237 | 9.8 (v3.1) | WordPress Finag theme <= 1.5.0 - PHP Object Injection … |
Themeton |
Finag |
2026-03-19T08:14:27.761Z | 2026-04-28T16:13:58.342Z |
| cve-2025-60233 | 9.8 (v3.1) | WordPress Zuut theme <= 1.4.2 - PHP Object Injection v… |
Themeton |
Zuut |
2026-03-19T08:13:15.424Z | 2026-04-28T16:13:58.113Z |
| cve-2025-53222 | 7.1 (v3.1) | WordPress tagDiv Opt-In Builder plugin <= 1.7.3 - Refl… |
tagDiv |
tagDiv Opt-In Builder |
2026-03-19T08:10:35.552Z | 2026-04-28T16:13:21.344Z |
| cve-2025-50001 | 7.1 (v3.1) | WordPress tagDiv Composer plugin <= 5.4.2 - Reflected … |
tagDiv |
tagDiv Composer |
2026-03-19T08:07:39.900Z | 2026-04-29T09:51:56.673Z |
| cve-2025-32223 | 6.5 (v3.1) | WordPress Tutor LMS plugin <= 3.9.4 - Insecure Direct … |
Themeum |
Tutor LMS |
2026-03-19T08:05:59.217Z | 2026-04-29T09:51:54.944Z |
| cve-2026-3475 | Instant Popup Builder <= 1.1.7 - Unauthenticated Arbit… |
instantpopupbuilder |
Instant Popup Builder – Powerful Popup Maker for Opt-ins, Email Newsletters & Lead Generation |
2026-03-19T07:34:56.084Z | 2026-04-08T17:10:30.120Z | |
| cve-2024-42210 | 7.6 (v3.1) | HCL Unica Marketing Operations v12.1.8 and lower is af… |
HCLSoftware |
Unica Marketing Operations (Plan) |
2026-03-19T07:32:40.924Z | 2026-03-23T13:50:36.585Z |
| cve-2026-25312 | 7.5 (v3.1) | WordPress EventPrime plugin <= 4.2.8.3 - Payment Bypas… |
Metagauss |
EventPrime |
2026-03-19T07:20:59.799Z | 2026-04-29T09:51:56.756Z |
| cve-2026-25471 | 8.1 (v3.1) | WordPress Admin Safety Guard plugin <= 1.2.6 - Broken … |
Themepaste |
Admin Safety Guard |
2026-03-19T07:17:54.170Z | 2026-04-28T16:14:59.631Z |
| cve-2026-27091 | 6.3 (v3.1) | WordPress UiPress lite plugin <= 3.5.09 - Broken Acces… |
UiPress |
UiPress lite |
2026-03-19T06:48:21.913Z | 2026-04-28T16:15:01.703Z |
| cve-2026-2571 | Download Manager <= 3.3.49 - Missing Authorization to … |
codename065 |
Download Manager |
2026-03-19T06:46:15.104Z | 2026-04-08T17:25:43.856Z | |
| cve-2026-4006 | Draft List <= 2.6.2 - Authenticated (Contributor+) Sto… |
dartiss |
Draft List |
2026-03-19T06:46:14.630Z | 2026-04-08T17:17:18.098Z | |
| cve-2026-4120 | Info Cards <= 2.0.7 - Authenticated (Contributor+) Sto… |
bplugins |
Info Cards – Add Text and Media in Card Layouts |
2026-03-19T06:46:14.030Z | 2026-04-08T16:42:57.427Z | |
| cve-2026-4068 | Add Custom Fields to Media <= 2.0.3 - Cross-Site Reque… |
pattihis |
Add Custom Fields to Media |
2026-03-19T06:46:13.363Z | 2026-04-08T16:42:27.727Z | |
| cve-2026-27093 | 8.1 (v3.1) | WordPress Tripgo theme < 1.5.6 - Local File Inclusion … |
ovatheme |
Tripgo |
2026-03-19T06:41:10.108Z | 2026-04-28T16:15:01.696Z |
| cve-2026-27096 | 8.1 (v3.1) | WordPress ColorFolio - Freelance Designer WordPress Th… |
BuddhaThemes |
ColorFolio - Freelance Designer WordPress Theme |
2026-03-19T05:31:42.330Z | 2026-04-28T16:15:01.674Z |
| cve-2026-27397 | 6.5 (v3.1) | WordPress Really Simple Security Pro plugin <= 9.5.4.0… |
Really Simple Plugins B.V. |
Really Simple Security Pro |
2026-03-19T05:30:18.525Z | 2026-04-28T16:15:02.887Z |
| cve-2026-27413 | 9.3 (v3.1) | WordPress Profile Builder Pro plugin < 3.14.0 - SQL In… |
Cozmoslabs |
Profile Builder Pro |
2026-03-19T05:28:13.373Z | 2026-04-28T16:15:03.091Z |
| cve-2026-27540 | 9 (v3.1) | WordPress Woocommerce Wholesale Lead Capture plugin <=… |
Rymera Web Co Pty Ltd. |
Woocommerce Wholesale Lead Capture |
2026-03-19T05:24:45.836Z | 2026-04-29T09:51:57.128Z |
| cve-2026-27542 | 9.8 (v3.1) | WordPress Woocommerce Wholesale Lead Capture plugin <=… |
Rymera Web Co Pty Ltd. |
Woocommerce Wholesale Lead Capture |
2026-03-19T05:22:49.717Z | 2026-04-29T09:51:57.085Z |
| cve-2026-28044 | 5.9 (v3.1) | WordPress WP Rocket plugin <= 3.19.4 - Cross Site Scri… |
WP Media |
WP Rocket |
2026-03-19T05:21:26.027Z | 2026-04-28T16:15:05.132Z |
| cve-2026-28070 | 5.3 (v3.1) | WordPress WP eMember plugin <= v10.2.2 - Broken Access… |
Tips and Tricks HQ |
WP eMember |
2026-03-19T05:20:03.784Z | 2026-04-28T16:15:06.675Z |
| cve-2026-28073 | 7.1 (v3.1) | WordPress WP eMember theme <= v10.2.2 - Reflected Cros… |
Tips and Tricks HQ |
WP eMember |
2026-03-19T05:18:56.777Z | 2026-04-28T16:15:06.683Z |
| cve-2026-1238 | SlimStat Analytics <= 5.3.5 - Unauthenticated Stored C… |
veronalabs |
SlimStat Analytics |
2026-03-19T04:27:29.705Z | 2026-04-08T17:30:48.873Z | |
| cve-2025-36051 | 6.2 (v3.1) | IBM QRadar SIEM Information Disclosure |
IBM |
QRadar SIEM |
2026-03-19T01:55:44.363Z | 2026-03-19T16:07:34.904Z |
| cve-2025-13995 | 5 (v3.1) | IBM QRadar SIEM Information Disclosure |
IBM |
QRadar |
2026-03-19T01:55:42.813Z | 2026-03-20T18:11:24.804Z |
| cve-2025-15051 | 5.4 (v3.1) | IBM QRadar SIEM Cross-Site Scripting |
IBM |
QRadar SIEM |
2026-03-19T01:55:41.122Z | 2026-03-19T13:34:27.020Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-058 | Vulnérabilité dans F5 BIG-IP | 2013-01-23T00:00:00.000000 | 2013-01-23T00:00:00.000000 |
| certa-2013-avi-057 | Vulnérabilité dans EMC Avamar | 2013-01-23T00:00:00.000000 | 2013-01-23T00:00:00.000000 |
| certa-2013-avi-056 | Vulnérabilité dans Snort | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-055 | Vulnérabilités dans EMC AlphaStor | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-054 | Vulnérabilités dans Avaya Aura Experience Portal | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-053 | Vulnérabilités dans le produit Cisco WRT54GL | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-052 | Multiples vulnérabilités dans Moodle | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-051 | Vulnérabilité dans IBM Informix | 2013-01-22T00:00:00.000000 | 2013-01-22T00:00:00.000000 |
| certa-2013-avi-050 | Vulnérabilité dans Foxit Reader | 2013-01-21T00:00:00.000000 | 2013-01-21T00:00:00.000000 |
| certa-2013-avi-049 | Multiples vulnérabilités dans Novell eDirectory | 2013-01-21T00:00:00.000000 | 2013-01-21T00:00:00.000000 |
| certa-2013-avi-048 | Vulnérabilité dans le système SCADA Schneider Electric SESU | 2013-01-18T00:00:00.000000 | 2013-01-18T00:00:00.000000 |
| certa-2013-avi-047 | Multiples vulnérabilités dans le système SCADA Rockwell Automation Controllogix | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-046 | Multiples vulnérabilités dans Drupal | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-045 | Multiples vulnérabilités dans Xen | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-044 | Vulnérabilité dans Cisco ASA 1000V Cloud Firewall H.323 | 2013-01-17T00:00:00.000000 | 2013-01-17T00:00:00.000000 |
| certa-2013-avi-043 | Vulnérabilité dans IBM Cognos TM1 | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-042 | Vulnérabilité dans Oracle Supply Chain Products Suite | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-041 | Multiples vulnérabilités dans Oracle Fusion Middleware | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-040 | Multiples vulnérabilités dans Oracle Enterprise Manager Grid Control | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-039 | Multiples vulnérabilités dans Oracle Database Mobile/Lite Server | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-038 | Multiples vulnérabilités dans Oracle PeopleSoft Products | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-037 | Multiples vulnérabilités dans Oracle E-Business Suite | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-036 | Vulnérabilité dans Oracle Database Server | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-035 | Multiples vulnérabilités dans Oracle Siebel CRM | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-034 | Multiples vulnérabilités dans Oracle MySQL | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-033 | Vulnérabilité dans Oracle Virtualization | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-032 | Vulnérabilité dans Oracle JD Edwards | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-031 | Multiples vulnérabilités dans Oracle Sun Products Suite | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-030 | Vulnérabilité dans Samba | 2013-01-16T00:00:00.000000 | 2013-01-16T00:00:00.000000 |
| certa-2013-avi-028 | Multiples vulnérabilités dans Avaya Call Management System | 2013-01-15T00:00:00.000000 | 2013-01-15T00:00:00.000000 |