Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-69029 | 5.4 (v3.1) | WordPress Struktur theme <= 2.5.1 - Insecure Direct Ob… |
Select-Themes |
Struktur |
2025-12-30T10:47:56.721Z | 2026-04-28T16:14:34.907Z |
| cve-2025-69032 | 5.4 (v3.1) | WordPress FiveStar theme <= 1.7 - Insecure Direct Obje… |
Mikado-Themes |
FiveStar |
2025-12-30T10:47:57.290Z | 2026-04-28T16:14:34.872Z |
| cve-2025-69030 | 5.4 (v3.1) | WordPress Backpack Traveler theme <= 2.10.3 - Insecure… |
Mikado-Themes |
Backpack Traveler |
2025-12-30T10:47:56.911Z | 2026-04-28T16:14:34.790Z |
| cve-2025-69024 | 6.5 (v3.1) | WordPress BizPrint plugin <= 4.6.7 - Broken Access Con… |
bizswoop |
BizPrint |
2025-12-30T10:47:55.715Z | 2026-04-28T16:14:34.654Z |
| cve-2025-69017 | 6.5 (v3.1) | WordPress RestroPress plugin <= 3.2.8.6 - Cross Site S… |
Magnigenie |
RestroPress |
2025-12-30T10:47:54.276Z | 2026-04-28T16:14:34.519Z |
| cve-2025-69027 | 5.3 (v3.1) | WordPress Product Delivery Date for WooCommerce – Lite… |
tychesoftwares |
Product Delivery Date for WooCommerce – Lite |
2025-12-30T10:47:56.343Z | 2026-04-28T16:14:34.495Z |
| cve-2025-69026 | 4.3 (v3.1) | WordPress PopupKit plugin <= 2.1.5 - Sensitive Data Ex… |
Roxnor |
PopupKit |
2025-12-30T10:47:56.141Z | 2026-04-28T16:14:34.481Z |
| cve-2025-69021 | 5.4 (v3.1) | WordPress Popup box plugin <= 6.0.7 - Cross Site Reque… |
Ays Pro |
Popup box |
2025-12-30T10:47:55.134Z | 2026-04-28T16:14:34.427Z |
| cve-2025-69015 | 3.8 (v3.1) | WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken A… |
Automattic |
Crowdsignal Forms |
2025-12-30T10:47:53.892Z | 2026-04-28T16:14:34.426Z |
| cve-2025-69022 | 5.4 (v3.1) | WordPress HR Management Lite plugin <= 3.6 - Broken Ac… |
Weblizar - WordPress Themes & Plugin |
HR Management Lite |
2025-12-30T10:47:55.337Z | 2026-04-28T16:14:34.406Z |
| cve-2025-69013 | 4.3 (v3.1) | WordPress Stratum plugin <= 1.6.1 - Broken Access Cont… |
jetmonsters |
Stratum |
2025-12-30T10:47:53.465Z | 2026-04-28T16:14:34.274Z |
| cve-2025-69014 | 4.9 (v3.1) | WordPress Youzify plugin <= 1.3.7 - Server Side Reques… |
Youzify |
Youzify |
2025-12-30T10:47:53.707Z | 2026-04-28T16:14:34.221Z |
| cve-2025-69012 | 4.3 (v3.1) | WordPress Event Organiser plugin <= 3.12.8 - Broken Ac… |
Stephen Harris |
Event Organiser |
2025-12-30T10:47:53.274Z | 2026-04-28T16:14:34.195Z |
| cve-2025-69009 | 5.3 (v3.1) | WordPress Medicalequipment theme <= 1.0.9 - Broken Acc… |
kamleshyadav |
Medicalequipment |
2025-12-30T10:47:52.874Z | 2026-04-28T16:14:34.032Z |
| cve-2025-68999 | 8.5 (v3.1) | WordPress Happy Addons for Elementor plugin <= 3.20.4 … |
HappyMonster |
Happy Addons for Elementor |
2026-01-22T16:52:15.685Z | 2026-04-28T16:14:33.851Z |
| cve-2025-68998 | 5.4 (v3.1) | WordPress Heateor Social Login plugin <= 1.1.39 - Cros… |
Heateor Support |
Heateor Social Login |
2025-12-30T10:47:52.118Z | 2026-04-28T16:14:33.847Z |
| cve-2025-68996 | 7.5 (v3.1) | WordPress Responsive Posts Carousel Pro plugin <= 15.1… |
WebCodingPlace |
Responsive Posts Carousel Pro |
2025-12-30T10:47:51.680Z | 2026-04-28T16:14:33.815Z |
| cve-2025-68995 | 4.3 (v3.1) | WordPress My Sticky Elements plugin <= 2.3.3 - Broken … |
Premio |
My Sticky Elements |
2025-12-30T10:47:51.492Z | 2026-04-28T16:14:33.810Z |
| cve-2025-68988 | 5.3 (v3.1) | WordPress E-Invoice App Malaysia plugin <= 1.3.0 - Sen… |
o2oe |
E-Invoice App Malaysia |
2025-12-30T10:47:50.131Z | 2026-04-28T16:14:33.801Z |
| cve-2025-68989 | 4.3 (v3.1) | WordPress Contact Form 7 Extension For Mailchimp plugi… |
Renzo Johnson |
contact-form-7-mailchimp-extension |
2025-12-30T10:47:50.363Z | 2026-04-28T16:14:33.789Z |
| cve-2025-68991 | 6.5 (v3.1) | WordPress BWL Pro Voting Manager plugin <= 1.4.9 - Cro… |
xenioushk |
BWL Pro Voting Manager |
2025-12-30T10:47:50.729Z | 2026-04-28T16:14:33.772Z |
| cve-2025-68990 | 8.5 (v3.1) | WordPress BWL Pro Voting Manager plugin <= 1.4.9 - SQL… |
xenioushk |
BWL Pro Voting Manager |
2025-12-30T10:47:50.548Z | 2026-04-28T16:14:33.768Z |
| cve-2025-68987 | 7.5 (v3.1) | WordPress Cinerama theme <= 2.9 - Local File Inclusion… |
Edge-Themes |
Cinerama |
2025-12-30T10:47:49.947Z | 2026-04-28T16:14:33.768Z |
| cve-2025-68993 | 5.3 (v3.1) | WordPress Share, Print and PDF Products for WooCommerc… |
XforWooCommerce |
Share, Print and PDF Products for WooCommerce |
2025-12-30T10:47:51.107Z | 2026-04-28T16:14:33.764Z |
| cve-2025-68994 | 5.3 (v3.1) | WordPress Product Loops for WooCommerce plugin <= 2.1.… |
XforWooCommerce |
Product Loops for WooCommerce |
2025-12-30T10:47:51.296Z | 2026-04-28T16:14:33.761Z |
| cve-2025-68985 | 7.5 (v3.1) | WordPress Aora theme <= 1.3.15 - Local File Inclusion … |
thembay |
Aora |
2025-12-30T10:47:49.767Z | 2026-04-28T16:14:33.567Z |
| cve-2025-68978 | 6.5 (v3.1) | WordPress DesignThemes Core plugin <= 1.6 - Cross Site… |
designthemes |
DesignThemes Core |
2025-12-30T10:47:48.485Z | 2026-04-28T16:14:33.548Z |
| cve-2025-68984 | 7.5 (v3.1) | WordPress Puca theme <= 2.6.39 - Local File Inclusion … |
thembay |
Puca |
2025-12-30T10:47:49.577Z | 2026-04-28T16:14:33.544Z |
| cve-2025-68979 | 5.3 (v3.1) | WordPress Google Calendar Events plugin <= 3.5.9 - Ins… |
SimpleCalendar |
Google Calendar Events |
2025-12-30T10:47:48.678Z | 2026-04-28T16:14:33.469Z |
| cve-2025-68980 | 5.3 (v3.1) | WordPress WeDesignTech Portfolio plugin <= 1.0.2 - Bro… |
designthemes |
WeDesignTech Portfolio |
2025-12-30T10:47:48.858Z | 2026-04-28T16:14:33.458Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2008-000069 | Apache Tomcat allows access from a non-permitted IP address | 2008-10-10T15:44+09:00 | 2009-07-08T11:38+09:00 |
| jvndb-2009-001545 | Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Zip File Scanning Utility | 2009-07-07T11:12+09:00 | 2009-07-07T11:12+09:00 |
| jvndb-2009-001544 | Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Vulnerability in Encoding Process | 2009-07-07T11:12+09:00 | 2009-07-07T11:12+09:00 |
| jvndb-2009-000046 | PHP-I-BOARD from Let's PHP! vulnerable to directory traversal | 2009-07-01T17:54+09:00 | 2009-07-01T17:54+09:00 |
| jvndb-2009-000045 | PHP-I-BOARD from Let's PHP! vulnerable to cross-site scripting | 2009-07-01T17:54+09:00 | 2009-07-01T17:54+09:00 |
| jvndb-2009-000044 | Tree BBS from Let's PHP! vulnerable to cross-site scripting | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2009-000043 | Movable Type access restriction bypass vulnerability | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2009-000042 | Movable Type cross-site scripting vulnerability | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2008-000075 | EC-CUBE vulnerable to SQL injection | 2008-11-06T16:04+09:00 | 2009-06-25T15:44+09:00 |
| jvndb-2009-000041 | Cross-site scripting vulnerability in PukiWikiMod from XOOPS Maniac | 2009-06-19T16:35+09:00 | 2009-06-19T16:35+09:00 |
| jvndb-2009-000040 | iPhone OS denial of service (DoS) vulnerability | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000039 | Buffer overflow vulnerability in Microsoft Works converters | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000038 | Cross-site scripting vulnerability in activeCollab | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000035 | Predictable session ID vulnerability in Serene Bach | 2009-06-18T17:53+09:00 | 2009-06-18T17:53+09:00 |
| jvndb-2009-000034 | IMG-BBS from MT312 vulnerable to cross-site scripting | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000033 | REP-BBS from MT312 vulnerable to cross-site scripting | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000032 | Directory traversal vulnerability in multiple Cisco Systems products | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000031 | Cross-site scripting vulnerability in leger (free edition) | 2009-05-27T18:28+09:00 | 2009-05-27T18:28+09:00 |
| jvndb-2009-000030 | a-News from Appleple vulnerable to cross-site scripting | 2009-05-22T14:31+09:00 | 2009-05-22T14:31+09:00 |
| jvndb-2009-000029 | HP System Management Homepage vulnerable to cross-site scripting | 2009-05-20T16:01+09:00 | 2009-05-20T16:01+09:00 |
| jvndb-2009-000028 | Trees from CGI RESCUE vulnerable to cross-site scripting | 2009-05-19T13:41+09:00 | 2009-05-19T13:41+09:00 |
| jvndb-2009-000027 | Sun GlassFish Enterprise Server and Sun Java System Application Server vulnerable to cross-site scripting | 2009-05-13T15:37+09:00 | 2009-05-13T15:37+09:00 |
| jvndb-2009-000026 | SQL injection vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2009-000025 | Cross-site scripting vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2008-000078 | CGI RESCUE MiniBBS2000 directory traversal vulnerability | 2008-11-26T17:50+09:00 | 2009-04-30T15:35+09:00 |
| jvndb-2009-000024 | Web Mailer from CGI RESCUE vulnerable to HTTP header injection | 2009-04-28T16:36+09:00 | 2009-04-28T16:36+09:00 |
| jvndb-2009-000023 | FORM2MAIL from CGI RESCUE allows unauthorized email transmission | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000022 | Cross-site scripting vulnerability in MiniBBS from CGI RESCUE | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000021 | MiniBBS22 from CGI RESCUE allows unauthorized email transmission | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000019 | Cross-site scripting vulnerability in apricot.php from LovPop.net | 2009-04-17T14:40+09:00 | 2009-04-17T14:40+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-1038 | Multiples vulnérabilités dans les produits IBM | 2023-12-15T00:00:00.000000 | 2023-12-15T00:00:00.000000 |
| certfr-2023-avi-1037 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-12-15T00:00:00.000000 | 2023-12-15T00:00:00.000000 |
| certfr-2023-avi-1036 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-12-15T00:00:00.000000 | 2023-12-15T00:00:00.000000 |
| certfr-2023-avi-1035 | Multiples vulnérabilités dans Microsoft Edge | 2023-12-15T00:00:00.000000 | 2023-12-15T00:00:00.000000 |
| certfr-2023-avi-1034 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-12-15T00:00:00.000000 | 2023-12-15T00:00:00.000000 |
| certfr-2023-avi-1033 | Multiples vulnérabilités dans Tenable Security Center | 2023-12-15T00:00:00.000000 | 2023-12-15T00:00:00.000000 |
| certfr-2023-avi-1027 | Multiples vulnérabilités dans GitLab | 2023-12-14T00:00:00.000000 | 2023-12-15T00:00:00.000000 |
| certfr-2023-avi-1032 | Vulnérabilité dans Microsoft Azure | 2023-12-14T00:00:00.000000 | 2023-12-14T00:00:00.000000 |
| certfr-2023-avi-1031 | Multiples vulnérabilités dans Google Chrome | 2023-12-14T00:00:00.000000 | 2023-12-14T00:00:00.000000 |
| certfr-2023-avi-1030 | Vulnérabilité dans Squid | 2023-12-14T00:00:00.000000 | 2023-12-14T00:00:00.000000 |
| certfr-2023-avi-1029 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2023-12-14T00:00:00.000000 | 2023-12-14T00:00:00.000000 |
| certfr-2023-avi-1028 | Vulnérabilité dans les produits Wallix | 2023-12-14T00:00:00.000000 | 2023-12-14T00:00:00.000000 |
| certfr-2023-avi-1026 | Vulnérabilité dans VMware Workspace ONE Launcher | 2023-12-14T00:00:00.000000 | 2023-12-14T00:00:00.000000 |
| certfr-2023-avi-1025 | Multiples vulnérabilités dans les produits Microsoft | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1024 | Multiples vulnérabilités dans Microsoft Azure | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1023 | Multiples vulnérabilités dans Microsoft Windows | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1022 | Multiples vulnérabilités dans Microsoft Office | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1021 | Multiples vulnérabilités dans les produits PRIM'X | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1020 | Multiples vulnérabilités dans les produits SAP | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1018 | Multiples vulnérabilités dans les produits Fortinet | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1017 | Multiples vulnérabilités dans les produits ElasticSearch | 2023-12-13T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1005 | Vulnérabilité dans Apache Struts 2 | 2023-12-07T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2022-avi-853 | Vulnérabilité dans Sophos Firewall | 2022-09-26T00:00:00.000000 | 2023-12-13T00:00:00.000000 |
| certfr-2023-avi-1016 | Vulnérabilité dans Xen | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1015 | Multiples vulnérabilités dans les produits Siemens | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1014 | Multiples vulnérabilités dans les produits Schneider Electric | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1013 | Multiples vulnérabilités dans les produits Apple | 2023-12-12T00:00:00.000000 | 2023-12-12T00:00:00.000000 |
| certfr-2023-avi-1012 | Multiples vulnérabilités dans LibreOffice | 2023-12-11T00:00:00.000000 | 2023-12-11T00:00:00.000000 |
| certfr-2023-avi-1011 | Multiples vulnérabilités dans les produits Qnap | 2023-12-11T00:00:00.000000 | 2023-12-11T00:00:00.000000 |
| certfr-2023-avi-1010 | Multiples vulnérabilités dans les produits Ivanti | 2023-12-11T00:00:00.000000 | 2023-12-11T00:00:00.000000 |