Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-5208 | 8.2 (v3.1) | Improper Neutralization of Special Elements used in an… |
CoolerControl |
coolercontrold |
2026-04-08T11:36:11.910Z | 2026-04-08T12:55:51.455Z |
| cve-2026-28264 | 3.3 (v3.1) | Dell PowerProtect Agent Service, version(s) prior… |
Dell |
PowerProtect Agent |
2026-04-08T11:24:25.496Z | 2026-04-08T14:16:22.270Z |
| cve-2026-3396 | WCAPF – WooCommerce Ajax Product Filter <= 4.2.3 - Una… |
shamimmoeen |
WCAPF – Ajax Product Filter for WooCommerce |
2026-04-08T11:16:58.886Z | 2026-04-08T17:53:21.100Z | |
| cve-2026-1672 | BEAR – Bulk Editor and Products Manager Professional f… |
realmag777 |
BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net |
2026-04-08T11:16:58.519Z | 2026-04-08T17:18:41.014Z | |
| cve-2026-2481 | Beaver Builder Page Builder – Drag and Drop Website Bu… |
beaverbuilder |
Beaver Builder Page Builder – Drag and Drop Website Builder |
2026-04-08T11:16:58.131Z | 2026-04-08T16:55:17.525Z | |
| cve-2026-3243 | Advanced Members for ACF <= 1.2.5 - Authenticated (Sub… |
danbilabs |
Advanced Members for ACF |
2026-04-08T11:16:57.732Z | 2026-04-08T16:41:44.695Z | |
| cve-2026-1673 | BEAR – Bulk Editor and Products Manager Professional f… |
realmag777 |
BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net |
2026-04-08T11:16:57.236Z | 2026-04-08T16:40:46.856Z | |
| cve-2026-1865 | User Registration & Membership <= 5.1.2 - Authenticate… |
wpeverest |
User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder |
2026-04-08T11:16:56.654Z | 2026-04-08T16:34:04.366Z | |
| cve-2026-4300 | Robo Gallery <= 5.1.3 - Authenticated (Author+) Stored… |
robosoft |
Robo Gallery – Photo & Image Slider |
2026-04-08T09:25:50.003Z | 2026-04-08T17:26:49.967Z | |
| cve-2026-4025 | PrivateContent Free <= 1.2.0 - Authenticated (Contribu… |
lcweb-projects |
PrivateContent Free |
2026-04-08T09:25:49.620Z | 2026-04-08T17:14:14.677Z | |
| cve-2026-4303 | WP Visitor Statistics (Real Time Traffic) <= 8.4 - Aut… |
osamaesh |
WP Visitor Statistics (Real Time Traffic) |
2026-04-08T09:25:49.220Z | 2026-04-08T18:48:12.685Z | |
| cve-2026-4073 | pdfl.io <= 1.0.5 - Authenticated (Contributor+) Stored… |
dougblackjr |
pdfl.io |
2026-04-08T09:25:48.500Z | 2026-04-08T16:43:47.056Z | |
| cve-2026-25776 | 9.8 (v3.0) 9.3 (v4.0) | Movable Type provided by Six Apart Ltd. contains … |
Six Apart Ltd. |
Movable Type |
2026-04-08T08:52:15.469Z | 2026-04-08T13:22:04.832Z |
| cve-2026-33088 | 7.3 (v3.0) 6.9 (v4.0) | Movable Type provided by Six Apart Ltd. contains … |
Six Apart Ltd. |
Movable Type |
2026-04-08T08:51:45.916Z | 2026-04-08T13:31:08.213Z |
| cve-2026-39716 | N/A | WordPress Flipmart theme <= 2.8 - Broken Access Contro… |
CKThemes |
Flipmart |
2026-04-08T08:30:49.850Z | 2026-04-08T13:07:29.040Z |
| cve-2026-39715 | N/A | WordPress AnyTrack Affiliate Link Manager plugin <= 1.… |
AnyTrack |
AnyTrack Affiliate Link Manager |
2026-04-08T08:30:49.638Z | 2026-04-13T19:16:05.182Z |
| cve-2026-39714 | N/A | WordPress G5Plus April theme <= 6.8 - Broken Access Co… |
G5Theme |
G5Plus April |
2026-04-08T08:30:49.299Z | 2026-04-08T13:09:27.163Z |
| cve-2026-39713 | N/A | WordPress Mailercloud – Integrate webforms and synchro… |
mailercloud |
Mailercloud – Integrate webforms and synchronize website contacts |
2026-04-08T08:30:49.120Z | 2026-04-13T19:16:51.554Z |
| cve-2026-39712 | N/A | WordPress tagDiv Composer plugin <= 5.4.3 - Arbitrary … |
tagDiv |
tagDiv Composer |
2026-04-08T08:30:48.938Z | 2026-04-08T13:11:52.383Z |
| cve-2026-39711 | N/A | WordPress RT-Theme 18 | Extensions plugin <= 2.5 - Sen… |
stmcan |
RT-Theme 18 | Extensions |
2026-04-08T08:30:48.755Z | 2026-04-13T18:40:26.104Z |
| cve-2026-39710 | N/A | WordPress RT-Theme 18 | Extensions plugin <= 2.5 - Cro… |
stmcan |
RT-Theme 18 | Extensions |
2026-04-08T08:30:48.574Z | 2026-04-08T13:13:38.476Z |
| cve-2026-39709 | N/A | WordPress The Tribal plugin <= 1.3.4 - Sensitive Data … |
thetechtribe |
The Tribal |
2026-04-08T08:30:48.380Z | 2026-04-13T18:46:17.963Z |
| cve-2026-39708 | N/A | WordPress UiCore Elements plugin <= 1.3.14 - Cross Sit… |
uicore |
UiCore Elements |
2026-04-08T08:30:48.106Z | 2026-04-08T13:19:03.025Z |
| cve-2026-39707 | N/A | WordPress Accept PayPal Payments using Contact Form 7 … |
ZealousWeb |
Accept PayPal Payments using Contact Form 7 |
2026-04-08T08:30:47.904Z | 2026-04-13T19:17:33.579Z |
| cve-2026-39706 | N/A | WordPress Make My Trivia plugin <= 1.1.0 - Broken Acce… |
Netro Systems |
Make My Trivia |
2026-04-08T08:30:47.730Z | 2026-04-08T13:22:55.133Z |
| cve-2026-39705 | N/A | WordPress MIPL WC Multisite Sync plugin <= 1.4.4 - Bro… |
Mulika Team |
MIPL WC Multisite Sync |
2026-04-08T08:30:47.550Z | 2026-04-13T19:18:21.340Z |
| cve-2026-39704 | N/A | WordPress Precious Metals Automated Product Pricing – … |
nfusionsolutions |
Precious Metals Automated Product Pricing – Pro |
2026-04-08T08:30:47.383Z | 2026-04-08T13:28:44.754Z |
| cve-2026-39703 | N/A | WordPress WPBITS Addons For Elementor Page Builder plu… |
wpbits |
WPBITS Addons For Elementor Page Builder |
2026-04-08T08:30:47.201Z | 2026-04-13T18:53:44.432Z |
| cve-2026-39702 | N/A | WordPress Animation Addons for Elementor plugin <= 2.6… |
Wealcoder |
Animation Addons for Elementor |
2026-04-08T08:30:47.029Z | 2026-04-08T14:01:10.277Z |
| cve-2026-39701 | N/A | WordPress ShopWP plugin <= 5.2.4 - Broken Access Contr… |
Andrew |
ShopWP |
2026-04-08T08:30:46.861Z | 2026-04-13T19:20:39.356Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2009-000028 | Trees from CGI RESCUE vulnerable to cross-site scripting | 2009-05-19T13:41+09:00 | 2009-05-19T13:41+09:00 |
| jvndb-2009-000027 | Sun GlassFish Enterprise Server and Sun Java System Application Server vulnerable to cross-site scripting | 2009-05-13T15:37+09:00 | 2009-05-13T15:37+09:00 |
| jvndb-2009-000026 | SQL injection vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2009-000025 | Cross-site scripting vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2009-000024 | Web Mailer from CGI RESCUE vulnerable to HTTP header injection | 2009-04-28T16:36+09:00 | 2009-04-28T16:36+09:00 |
| jvndb-2009-000023 | FORM2MAIL from CGI RESCUE allows unauthorized email transmission | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000022 | Cross-site scripting vulnerability in MiniBBS from CGI RESCUE | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000021 | MiniBBS22 from CGI RESCUE allows unauthorized email transmission | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000020 | Movable Type cross-site scripting vulnerability | 2009-04-28T16:18+09:00 | 2009-07-29T12:22+09:00 |
| jvndb-2009-000019 | Cross-site scripting vulnerability in apricot.php from LovPop.net | 2009-04-17T14:40+09:00 | 2009-04-17T14:40+09:00 |
| jvndb-2009-001135 | Fujitsu Jasmine HTTP Response Splitting Vulnerability When Executing WebLink Template | 2009-04-17T14:13+09:00 | 2009-04-17T14:13+09:00 |
| jvndb-2009-000017 | XOOPS Cube Legacy cross-site scripting vulnerability | 2009-04-07T17:06+09:00 | 2009-04-07T17:06+09:00 |
| jvndb-2009-000016 | Access Analyzer CGI Professional Version vulnerability allows third party to gain administrative privileges | 2009-03-31T16:08+09:00 | 2009-03-31T16:08+09:00 |
| jvndb-2009-001087 | Fujitsu Enhanced Support Facility HRM-S Hardware/Software Information Disclosure Vulnerability | 2009-03-24T17:35+09:00 | 2009-03-24T17:35+09:00 |
| jvndb-2009-000015 | Cross-site scripting vulnerability in Access Analyzer CGI Standard Version (Ver. 3.x) | 2009-03-16T17:07+09:00 | 2009-03-16T17:07+09:00 |
| jvndb-2009-000014 | MP Form Mail CGI vulnerability allows third party to gain administrative privileges | 2009-03-13T16:25+09:00 | 2009-03-13T16:25+09:00 |
| jvndb-2009-000012 | Buffer overflow vulnerability in ActiveX Control for Sony SNC series network cameras | 2009-03-09T16:27+09:00 | 2009-03-09T16:27+09:00 |
| jvndb-2009-000013 | PEAK XOOPS piCal cross-site scripting vulnerability | 2009-03-03T16:37+09:00 | 2009-03-03T16:37+09:00 |
| jvndb-2009-001033 | Multiple Vulnerabilities in uCosminexus Portal Framework | 2009-03-02T17:38+09:00 | 2009-03-02T17:38+09:00 |
| jvndb-2009-001032 | JP1/Cm2/Network Node Manager Denial of Service (DoS) Vulnerability | 2009-03-02T17:38+09:00 | 2009-03-02T17:38+09:00 |
| jvndb-2009-000010 | Apache Tomcat information disclosure vulnerability | 2009-02-26T15:28+09:00 | 2009-02-26T15:28+09:00 |
| jvndb-2009-001025 | Vulnerability allowing Viewing/Updating of Other Users' Information in Groupmax World Wide Web Desktop Version 6 | 2009-02-26T11:55+09:00 | 2009-02-26T11:55+09:00 |
| jvndb-2009-000009 | FAST ESP cross-site scripting vulnerability | 2009-02-17T11:55+09:00 | 2009-02-17T11:55+09:00 |
| jvndb-2009-000011 | Becky! Internet Mail buffer overflow vulnerability | 2009-02-12T17:28+09:00 | 2009-02-12T17:28+09:00 |
| jvndb-2006-000992 | Multiple Vulnerabilities Concerning Hitachi Web Server | 2009-02-04T17:42+09:00 | 2014-05-22T18:03+09:00 |
| jvndb-2009-000008 | Fulltext search CGI vulnerability allows third party to gain administrative privileges | 2009-01-28T15:25+09:00 | 2009-01-28T15:25+09:00 |
| jvndb-2009-000007 | Oracle WebLogic Server vulnerable to cross-site scripting | 2009-01-20T16:45+09:00 | 2009-01-20T16:45+09:00 |
| jvndb-2009-000006 | Cisco IOS cross-site scripting vulnerability | 2009-01-15T19:14+09:00 | 2009-01-15T19:14+09:00 |
| jvndb-2009-000002 | Movable Type Enterprise cross-site scripting vulnerability | 2009-01-13T18:50+09:00 | 2009-07-29T12:22+09:00 |
| jvndb-2009-000005 | MODx vulnerable to SQL injection | 2009-01-09T15:54+09:00 | 2009-01-09T15:54+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-1020 | Multiples vulnérabilités dans les produits SAP | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1019 | Vulnérabilité dans les produits Cisco | 2023-12-13T00:00:00.000000 | 2024-01-23T00:00:00.000000 |
| certfr-2023-avi-1018 | Multiples vulnérabilités dans les produits Fortinet | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1017 | Multiples vulnérabilités dans les produits ElasticSearch | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1016 | Vulnérabilité dans Xen | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1015 | Multiples vulnérabilités dans les produits Siemens | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1014 | Multiples vulnérabilités dans les produits Schneider Electric | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1013 | Multiples vulnérabilités dans les produits Apple | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1012 | Multiples vulnérabilités dans LibreOffice | 2023-12-11T00:00:00.000000 | 2023-12-11T00:00:00.000000 |
| certfr-2023-avi-1011 | Multiples vulnérabilités dans les produits Qnap | 2023-12-11T00:00:00.000000 | 2023-12-11T00:00:00.000000 |
| certfr-2023-avi-1010 | Multiples vulnérabilités dans les produits Ivanti | 2023-12-11T00:00:00.000000 | 2023-12-11T00:00:00.000000 |
| certfr-2023-avi-1009 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-12-08T00:00:00.000000 | 2023-12-08T00:00:00.000000 |
| certfr-2023-avi-1008 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-12-08T00:00:00.000000 | 2023-12-08T00:00:00.000000 |
| certfr-2023-avi-1007 | Multiples vulnérabilités dans les produits IBM | 2023-12-08T00:00:00.000000 | 2023-12-08T00:00:00.000000 |
| certfr-2023-avi-1006 | Multiples vulnérabilités dans Microsoft Edge | 2023-12-08T00:00:00.000000 | 2023-12-08T00:00:00.000000 |
| certfr-2023-avi-1005 | Vulnérabilité dans Apache Struts 2 | 2023-12-07T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1004 | Multiples vulnérabilités dans Nagios XI | 2023-12-07T00:00:00.000000 | 2023-12-07T00:00:00.000000 |
| certfr-2023-avi-1003 | Vulnérabilité dans WordPress | 2023-12-07T00:00:00.000000 | 2023-12-07T00:00:00.000000 |
| certfr-2023-avi-1002 | Vulnérabilité dans MISP | 2023-12-07T00:00:00.000000 | 2023-12-07T00:00:00.000000 |
| certfr-2023-avi-1001 | Vulnérabilité dans Atlassian Confluence | 2023-12-06T00:00:00.000000 | 2023-12-06T00:00:00.000000 |
| certfr-2023-avi-1000 | Multiples vulnérabilités dans Progress MOVEit Transfer | 2023-12-06T00:00:00.000000 | 2023-12-06T00:00:00.000000 |
| certfr-2023-avi-0999 | Vulnérabilité dans ElasticSearch pour Hadoop | 2023-12-06T00:00:00.000000 | 2023-12-06T00:00:00.000000 |
| certfr-2023-avi-0998 | Multiples vulnérabilités dans Google Chrome | 2023-12-06T00:00:00.000000 | 2023-12-06T00:00:00.000000 |
| certfr-2023-avi-0997 | Vulnérabilité dans SolarWinds Serv-U | 2023-12-06T00:00:00.000000 | 2023-12-06T00:00:00.000000 |
| certfr-2023-avi-0996 | Vulnérabilité dans TheGreenBow VPN Client | 2023-12-05T00:00:00.000000 | 2023-12-05T00:00:00.000000 |
| certfr-2023-avi-0995 | Multiples vulnérabilités dans Google Android | 2023-12-05T00:00:00.000000 | 2023-12-11T00:00:00.000000 |
| certfr-2023-avi-0994 | Multiples vulnérabilités dans SonicWall SMA | 2023-12-05T00:00:00.000000 | 2023-12-05T00:00:00.000000 |
| certfr-2023-avi-0993 | Multiples vulnérabilités dans Squid | 2023-12-04T00:00:00.000000 | 2023-12-04T00:00:00.000000 |
| certfr-2023-avi-0992 | Vulnérabilité dans SolarWinds Platform | 2023-12-01T00:00:00.000000 | 2023-12-01T00:00:00.000000 |
| certfr-2023-avi-0991 | Multiples vulnérabilités dans GitLab | 2023-12-01T00:00:00.000000 | 2023-12-01T00:00:00.000000 |