Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-22277 | 8.8 (v3.1) | WordPress Vitepos plugin <= 3.1.4 - Broken Authenticat… |
appsbd |
Vitepos |
2025-04-01T05:32:24.249Z | 2026-04-28T16:10:57.813Z |
| cve-2025-22265 | 6.5 (v3.1) | WordPress EMI Calculator plugin <= 1.1 - Settings Chan… |
mgplugin |
EMI Calculator |
2025-01-31T08:23:54.604Z | 2026-04-28T16:10:57.748Z |
| cve-2025-22263 | 7.1 (v3.1) | WordPress Global Gallery plugin <= 8.8.0 - Reflected C… |
NotFound |
Global Gallery |
2025-04-15T21:53:09.352Z | 2026-04-28T16:10:57.738Z |
| cve-2025-22276 | 5.9 (v3.1) | WordPress Related Post Shortcode Plugin <= 1.2 - Cross… |
enguerranws |
Related Post Shortcode |
2025-01-21T17:21:50.948Z | 2026-04-28T16:10:57.729Z |
| cve-2025-22268 | 6.5 (v3.1) | WordPress Uncanny Toolkit for LearnDash plugin <= 3.7.… |
Uncanny Owl |
Uncanny Toolkit for LearnDash |
2025-04-15T21:53:09.632Z | 2026-04-28T16:10:57.729Z |
| cve-2025-22269 | 6.5 (v3.1) | WordPress Real Testimonials plugin <= 3.1.6 - Cross Si… |
ShapedPlugin LLC |
Real Testimonials |
2025-04-15T21:53:09.816Z | 2026-04-28T16:10:57.686Z |
| cve-2025-22261 | 6.5 (v3.1) | WordPress WP FullCalendar plugin <= 1.5 - Cross Site S… |
Marcus (aka @msykes) |
WP FullCalendar |
2025-01-07T10:49:06.496Z | 2026-04-28T16:10:57.682Z |
| cve-2025-15636 | 6.5 (v3.1) | WordPress YouTube Showcase plugin <= 3.5.1 - Cross Sit… |
emarket-design |
YouTube Showcase |
2026-04-15T15:55:51.930Z | 2026-04-28T16:10:57.676Z |
| cve-2025-22264 | 7.1 (v3.1) | WordPress WP Query Creator plugin <= 1.0 - Reflected C… |
Patel |
WP Query Creator |
2025-01-23T15:29:38.873Z | 2026-04-28T16:10:57.674Z |
| cve-2025-22260 | 4.3 (v3.1) | WordPress Meta Tag Manager plugin <= 3.1 - Broken Acce… |
Marcus (aka @msykes) |
Meta Tag Manager |
2025-02-03T14:23:50.454Z | 2026-04-28T16:10:57.624Z |
| cve-2025-22267 | 6.5 (v3.1) | WordPress Weaver Themes Shortcode Compatibility Plugin… |
wpweaver |
Weaver Themes Shortcode Compatibility |
2025-01-21T17:21:50.760Z | 2026-04-28T16:10:57.620Z |
| cve-2025-15635 | 4.3 (v3.1) | WordPress Smart Online Order for Clover plugin <= 1.6.… |
ZAYTECH |
Smart Online Order for Clover |
2026-04-15T15:49:53.280Z | 2026-04-28T16:10:57.603Z |
| cve-2025-22262 | 5.9 (v3.1) | WordPress Bonjour Bar plugin <= 1.0.0 - Cross Site Scr… |
WittyFolk |
Bonjour Bar |
2025-01-21T13:57:33.967Z | 2026-04-28T16:10:57.584Z |
| cve-2025-14429 | 8.1 (v3.1) | WordPress AeroLand theme <= 1.6.6 - Local File Inclusi… |
ThemeMove |
AeroLand |
2026-01-08T09:17:37.834Z | 2026-04-28T16:10:57.537Z |
| cve-2025-14431 | 8.1 (v3.1) | WordPress Navian theme <= 1.5.4 - Local File Inclusion… |
THEMELOGI |
Navian |
2026-01-08T09:17:38.310Z | 2026-04-28T16:10:57.530Z |
| cve-2025-14430 | 8.1 (v3.1) | WordPress Brook - Agency Business Creative theme <= 2.… |
ThemeMove |
Brook |
2026-01-08T09:17:38.058Z | 2026-04-28T16:10:57.525Z |
| cve-2025-13504 | 7.1 (v3.1) | WordPress Real Estate Pro plugin <= 2.1.4 - Reflected … |
e-plugins |
Real Estate Pro |
2026-01-08T09:17:36.949Z | 2026-04-28T16:10:57.468Z |
| cve-2025-1249 | 5.3 (v3.1) | WordPress Events Manager plugin <= 6.6.4.1 - Broken Ac… |
Marcus (aka @msykes) |
Events Manager |
2025-02-26T14:32:10.186Z | 2026-04-28T16:10:57.455Z |
| cve-2024-56302 | 6.5 (v3.1) | WordPress ConvertCalculator for WordPress plugin <= 1.… |
jorisderuiter |
ConvertCalculator for WordPress |
2025-01-02T12:01:32.295Z | 2026-04-28T16:10:57.433Z |
| cve-2024-56301 | 7.1 (v3.1) | WordPress Distance Based Shipping Calculator Plugin <=… |
enituretechnology |
Distance Based Shipping Calculator |
2025-01-13T13:11:37.072Z | 2026-04-28T16:10:57.416Z |
| cve-2025-14314 | 8.5 (v3.1) | WordPress PopupKit plugin <= 2.1.5 - SQL Injection vul… |
Roxnor |
PopupKit |
2025-12-18T07:21:40.676Z | 2026-04-28T16:10:57.412Z |
| cve-2025-12551 | 7.1 (v3.1) | WordPress ListingHub plugin 1.2.6 - Cross Site Scripti… |
e-plugins |
ListingHub |
2026-01-08T09:17:36.759Z | 2026-04-28T16:10:57.373Z |
| cve-2025-12549 | 8.1 (v3.1) | WordPress Rozy - Flower Shop theme <= 1.2.25 - Local F… |
magentech |
Rozy - Flower Shop |
2026-01-08T09:17:36.012Z | 2026-04-28T16:10:57.346Z |
| cve-2025-12550 | 8.1 (v3.1) | WordPress OchaHouse theme <= 2.2.8 - Local File Inclus… |
jwsthemes |
OchaHouse |
2026-01-08T09:17:36.554Z | 2026-04-28T16:10:57.339Z |
| cve-2024-7590 | 6.5 (v3.1) | WordPress Spectra plugin<= 2.14.1 - Cross Site Scripti… |
Brainstorm Force |
Spectra |
2024-08-12T21:47:59.631Z | 2026-04-28T16:10:57.336Z |
| cve-2025-14358 | 7.5 (v3.1) | WordPress REHub Framework plugin <= 19.9.5 - Broken Ac… |
sizam |
REHub Framework |
2026-01-08T09:17:37.140Z | 2026-04-28T16:10:57.328Z |
| cve-2025-14360 | 7.5 (v3.1) | WordPress Blockons plugin <= 1.2.19 - Broken Access Co… |
Kaira |
Blockons |
2026-01-08T09:17:37.614Z | 2026-04-28T16:10:57.326Z |
| cve-2024-9146 | 4.9 (v3.1) | WordPress CSS JS Files plugin <= 1.5.0 - Directory Tra… |
jamesdlow |
CSS JS Files |
2024-10-05T10:31:11.387Z | 2026-04-28T16:10:57.324Z |
| cve-2025-10019 | 6.5 (v3.1) | WordPress Contact Form Email plugin <= 1.3.60 - Insecu… |
codepeople |
Contact Form Email |
2025-12-18T07:21:40.448Z | 2026-04-28T16:10:57.279Z |
| cve-2025-13835 | 6.5 (v3.1) | WordPress Arconix Shortcodes plugin <= 2.1.20 - Cross … |
tychesoftwares |
Arconix Shortcodes |
2025-12-01T17:57:41.794Z | 2026-04-28T16:10:57.260Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2011-avi-520 | Vulnérabilités dans CiscoWorks LAN Management Solution | 2011-09-15T00:00:00.000000 | 2011-09-15T00:00:00.000000 |
| certa-2011-avi-519 | Multiples vulnérabilités dans Django | 2011-09-15T00:00:00.000000 | 2011-09-15T00:00:00.000000 |
| certa-2011-avi-518 | Vulnérabilités dans Cisco Unified Service Monitor et Cisco Unified Operations Manager | 2011-09-15T00:00:00.000000 | 2011-09-15T00:00:00.000000 |
| certa-2011-avi-517 | Vulnérabilité dans Novell Cloud Manager | 2011-09-15T00:00:00.000000 | 2011-09-15T00:00:00.000000 |
| certa-2011-avi-516 | Vulnérabilité dans Apache | 2011-09-15T00:00:00.000000 | 2011-09-15T00:00:00.000000 |
| certa-2011-avi-515 | Vulnérabilités dans IBM WebSphere | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-514 | Vulnérabilités dans Microsoft SharePoint | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-513 | Vulnérabilités dans Microsoft Office | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-512 | Vulnérabilités dans Microsoft Excel | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-511 | Vulnérabilité dans des composants Windows | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-510 | Vulnérabilité dans Microsoft WINS | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-509 | Vulnérabilité dans EMC Avamar | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-508 | Multiples vulnérabilités dans Adobe Reader et Adobe Acrobat | 2011-09-14T00:00:00.000000 | 2011-09-14T00:00:00.000000 |
| certa-2011-avi-507 | Vulnérabilités dans FFmpeg | 2011-09-13T00:00:00.000000 | 2011-09-13T00:00:00.000000 |
| certa-2011-avi-504 | Vulnérabilités dans Spring Framework | 2011-09-13T00:00:00.000000 | 2011-09-13T00:00:00.000000 |
| certa-2011-avi-502 | Vulnérabilité dans libsvg | 2011-09-12T00:00:00.000000 | 2011-09-12T00:00:00.000000 |
| certa-2011-avi-501 | Vulnérabilités dans IBM Open Administration Tool | 2011-09-12T00:00:00.000000 | 2011-09-12T00:00:00.000000 |
| certa-2011-avi-493 | Certificats SSL frauduleux | 2011-09-02T00:00:00.000000 | 2011-09-12T00:00:00.000000 |
| certa-2011-avi-500 | Vulnérabilité dans Xen | 2011-09-08T00:00:00.000000 | 2011-09-08T00:00:00.000000 |
| certa-2011-avi-499 | Vulnérabilité dans les commutateurs Cisco Nexus 5000 et 3000 series | 2011-09-08T00:00:00.000000 | 2011-09-08T00:00:00.000000 |
| certa-2011-avi-498 | Vulnérabilité dans Bluecoat Reporter | 2011-09-08T00:00:00.000000 | 2011-09-08T00:00:00.000000 |
| certa-2011-avi-497 | Vulnérabilité dans IBM OmniFind | 2011-09-07T00:00:00.000000 | 2011-09-07T00:00:00.000000 |
| certa-2011-avi-495 | Vulnérabilité dans les produits Hitachi Cosminexus | 2011-09-06T00:00:00.000000 | 2011-09-06T00:00:00.000000 |
| certa-2011-avi-494 | Vulnérabilité dans Hitachi Web Serveur | 2011-09-06T00:00:00.000000 | 2011-09-06T00:00:00.000000 |
| certa-2011-avi-492 | Vulnérabilités dans Symantec Enterprise Vault | 2011-09-02T00:00:00.000000 | 2011-09-02T00:00:00.000000 |
| certa-2011-avi-491 | Vulnérabilité dans IBM WebSphere Application Server Administrative Console | 2011-09-01T00:00:00.000000 | 2011-09-01T00:00:00.000000 |
| certa-2011-avi-489 | Vulnérabilité dans IBM WebSphere Application Server Community Edition | 2011-09-01T00:00:00.000000 | 2011-09-01T00:00:00.000000 |
| certa-2011-avi-487 | Multiples vulnérabilités dans HP-UX Veritas Enterprise Administrator | 2011-09-01T00:00:00.000000 | 2011-09-01T00:00:00.000000 |
| certa-2011-avi-486 | Vulnérabilités dans Opera | 2011-08-31T00:00:00.000000 | 2011-08-31T00:00:00.000000 |
| certa-2011-avi-485 | Vulnérabilité dans Apache Tomcat | 2011-08-31T00:00:00.000000 | 2011-08-31T00:00:00.000000 |