Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-39670 | N/A | WordPress Visual Link Preview plugin <= 2.3.0 - Server… |
Brecht |
Visual Link Preview |
2026-04-08T08:30:38.929Z | 2026-04-09T15:02:33.064Z |
| cve-2026-39669 | N/A | WordPress NitroPack plugin <= 1.19.3 - Broken Access C… |
NitroPack |
NitroPack |
2026-04-08T08:30:38.737Z | 2026-04-13T19:27:18.269Z |
| cve-2026-39668 | N/A | WordPress Book Previewer for Woocommerce plugin <= 1.0… |
g5theme |
Book Previewer for Woocommerce |
2026-04-08T08:30:38.560Z | 2026-04-08T20:19:59.652Z |
| cve-2026-39667 | N/A | WordPress Korea SNS plugin <= 1.7.0 - Cross Site Scrip… |
Jongmyoung Kim |
Korea SNS |
2026-04-08T08:30:38.379Z | 2026-04-13T18:49:47.140Z |
| cve-2026-39666 | N/A | WordPress Hello Bar Popup Builder plugin <= 1.5.1 - Cr… |
telepathy |
Hello Bar Popup Builder |
2026-04-08T08:30:38.138Z | 2026-04-08T20:37:37.300Z |
| cve-2026-39665 | N/A | WordPress SEO Friendly Images plugin <= 3.0.5 - Cross … |
Vladimir Prelovac |
SEO Friendly Images |
2026-04-08T08:30:37.934Z | 2026-04-13T18:52:45.474Z |
| cve-2026-39664 | N/A | WordPress Leadrebel plugin <= 1.0.2 - Broken Access Co… |
leadrebel |
Leadrebel |
2026-04-08T08:30:37.757Z | 2026-04-09T15:03:35.277Z |
| cve-2026-39663 | N/A | WordPress TrueBooker plugin <= 1.1.5 - Broken Access C… |
themetechmount |
TrueBooker |
2026-04-08T08:30:37.575Z | 2026-04-13T19:28:10.049Z |
| cve-2026-39662 | N/A | WordPress Product Price by Formula for WooCommerce plu… |
ProWCPlugins |
Product Price by Formula for WooCommerce |
2026-04-08T08:30:37.354Z | 2026-04-09T15:04:15.680Z |
| cve-2026-39660 | N/A | WordPress WP Job Manager plugin <= 2.4.1 - Broken Acce… |
Automattic |
WP Job Manager |
2026-04-08T08:30:37.120Z | 2026-04-13T19:10:17.629Z |
| cve-2026-39659 | N/A | {'providerMetadata': {'orgId': '21595511-bba5-4825-b968-b78d1f9984a3', 'shortName': 'Patchstack', 'dateUpdated': '2026-04-21T10:53:33.975Z'}, 'rejectedReasons': [{'lang': 'en', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.', 'supportingMedia': [{'type': 'text/html', 'base64': False, 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.'}]}], 'x_generator': {'engine': 'Vulnogram 1.0.1'}} | N/A | N/A | 2026-04-08T08:30:36.852Z | 2026-04-21T10:53:33.975Z |
| cve-2026-39658 | N/A | WordPress Panda Pods Repeater Field plugin <= 1.5.12 -… |
Coding Panda |
Panda Pods Repeater Field |
2026-04-08T08:30:36.675Z | 2026-04-13T19:28:57.046Z |
| cve-2026-39657 | N/A | WordPress leadlovers forms plugin <= 1.0.2 - Broken Ac… |
leadlovers |
leadlovers forms |
2026-04-08T08:30:36.400Z | 2026-04-09T15:09:02.125Z |
| cve-2026-39656 | N/A | WordPress Razorpay for WooCommerce plugin <= 4.8.2 - B… |
Razorpay |
Razorpay for WooCommerce |
2026-04-08T08:30:36.077Z | 2026-04-13T19:29:46.131Z |
| cve-2026-39654 | N/A | WordPress WP Simple HTML Sitemap plugin <= 3.8 - Cross… |
Ashish Ajani |
WP Simple HTML Sitemap |
2026-04-08T08:30:35.896Z | 2026-04-09T15:14:39.030Z |
| cve-2026-39653 | N/A | WordPress Video Conferencing with Zoom plugin <= 4.6.6… |
Deepen Bajracharya |
Video Conferencing with Zoom |
2026-04-08T08:30:35.685Z | 2026-04-13T18:42:58.707Z |
| cve-2026-39652 | N/A | WordPress iGMS Direct Booking plugin <= 1.3 - Broken A… |
igms |
iGMS Direct Booking |
2026-04-08T08:30:35.490Z | 2026-04-09T15:19:38.467Z |
| cve-2026-39651 | N/A | WordPress Total Poll Lite plugin <= 4.12.0 - Broken Ac… |
TotalSuite |
Total Poll Lite |
2026-04-08T08:30:35.156Z | 2026-04-13T18:45:32.734Z |
| cve-2026-39650 | N/A | WordPress UnitechPay plugin <= 1.0.2 - Broken Access C… |
Unitech Web |
UnitechPay |
2026-04-08T08:30:34.227Z | 2026-04-09T15:27:30.306Z |
| cve-2026-39649 | N/A | WordPress Royale News theme <= 2.2.4 - Broken Access C… |
themebeez |
Royale News |
2026-04-08T08:30:34.012Z | 2026-04-13T19:30:29.514Z |
| cve-2026-39648 | N/A | WordPress Cream Blog theme <= 2.1.7 - Broken Access Co… |
themebeez |
Cream Blog |
2026-04-08T08:30:33.766Z | 2026-04-09T15:31:38.730Z |
| cve-2026-39647 | N/A | WordPress MP3 Audio Player for Music, Radio & Podcast … |
sonaar |
MP3 Audio Player for Music, Radio & Podcast by Sonaar |
2026-04-08T08:30:33.159Z | 2026-04-13T20:23:37.275Z |
| cve-2026-39646 | N/A | WordPress Leaflet Map plugin <= 3.4.4 - Cross Site Scr… |
bozdoz |
Leaflet Map |
2026-04-08T08:30:32.949Z | 2026-04-09T15:46:45.554Z |
| cve-2026-39645 | N/A | WordPress GlobalPayments WooCommerce plugin <= 1.18.0 … |
Global Payments |
GlobalPayments WooCommerce |
2026-04-08T08:30:32.779Z | 2026-04-13T20:27:28.837Z |
| cve-2026-39644 | N/A | WordPress Wp Ultimate Review plugin <= 2.3.8 - Broken … |
Roxnor |
Wp Ultimate Review |
2026-04-08T08:30:32.605Z | 2026-04-09T15:34:12.969Z |
| cve-2026-39643 | N/A | WordPress Payment Plugins for PayPal WooCommerce plugi… |
Payment Plugins |
Payment Plugins for PayPal WooCommerce |
2026-04-08T08:30:32.373Z | 2026-04-13T19:31:05.074Z |
| cve-2026-39641 | N/A | WordPress Blackfyre theme <= 2.5.4 - Cross Site Reques… |
Skywarrior |
Blackfyre |
2026-04-08T08:30:32.097Z | 2026-04-09T15:38:54.023Z |
| cve-2026-39640 | N/A | WordPress Theme Editor plugin <= 3.2 - Cross Site Requ… |
mndpsingh287 |
Theme Editor |
2026-04-08T08:30:31.919Z | 2026-04-14T14:22:14.760Z |
| cve-2026-39639 | N/A | WordPress RPS Include Content plugin <= 1.2.2 - Broken… |
redpixelstudios |
RPS Include Content |
2026-04-08T08:30:31.738Z | 2026-04-09T15:53:34.788Z |
| cve-2026-39638 | N/A | WordPress Qubely plugin <= 1.8.14 - Cross Site Scripti… |
Themeum |
Qubely |
2026-04-08T08:30:31.510Z | 2026-04-13T18:48:48.559Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2008-000064 | EC-CUBE cross-site scripting vulnerability | 2008-10-01T16:31+09:00 | 2008-10-01T16:31+09:00 |
| jvndb-2008-000061 | phpMyAdmin cross-site scripting vulnerability | 2008-09-26T16:37+09:00 | 2008-09-26T16:37+09:00 |
| jvndb-2008-001665 | Data Transfer Control Process Cessation Issue in XFIT/S/JCA and XFIT/S/ZGN | 2008-09-24T12:03+09:00 | 2008-09-24T12:03+09:00 |
| jvndb-2008-000060 | Kantan WEB Server cross-site scripting vulnerability | 2008-09-22T12:26+09:00 | 2008-09-22T12:26+09:00 |
| jvndb-2008-000059 | Kantan WEB Server directory traversal vulnerability | 2008-09-22T12:26+09:00 | 2008-09-22T12:26+09:00 |
| jvndb-2008-001647 | Jasmine WebLink Template Multiple Vulnerabilities | 2008-09-18T11:48+09:00 | 2009-03-30T14:29+09:00 |
| jvndb-2008-000058 | Multiple Tor World CGI scripts vulnerable to arbitrary script execution | 2008-09-18T11:48+09:00 | 2008-09-18T11:48+09:00 |
| jvndb-2008-000057 | Sound Master 2nd from High Norm vulnerable to cross-site scripting | 2008-09-10T11:28+09:00 | 2008-09-10T11:28+09:00 |
| jvndb-2008-000056 | Movable Type vulnerable to cross-site scripting | 2008-09-10T11:28+09:00 | 2008-09-10T11:28+09:00 |
| jvndb-2008-001614 | JP1/NETM/DM SubManager and JP1/NETM/DM Client Process Termination Vulnerability | 2008-09-09T16:21+09:00 | 2008-09-09T16:21+09:00 |
| jvndb-2008-001613 | Fujitsu Interstage Application Server Access Control Update Problem | 2008-09-09T16:21+09:00 | 2008-09-09T16:21+09:00 |
| jvndb-2008-000052 | Webservice-DIC shop_v50 and shop_v52 vulnerable to cross-site scripting | 2008-09-08T17:01+09:00 | 2008-09-08T17:01+09:00 |
| jvndb-2008-001585 | Hitachi JP1/File Transmission Server/FTP Unauthorized File Permission Change Vulnerability | 2008-09-05T12:24+09:00 | 2008-09-05T12:24+09:00 |
| jvndb-2008-001584 | Hitachi JP1/File Transmission Server/FTP Transmission Failure Problem | 2008-09-05T12:23+09:00 | 2008-09-05T12:23+09:00 |
| jvndb-2008-001576 | Fujitsu Interstage Application Server Interstage Management Console Arbitrary File Read/Delete Vulnerability | 2008-09-03T12:34+09:00 | 2012-02-15T18:13+09:00 |
| jvndb-2008-001575 | Fujitsu Interstage Application Server Single Sign-On Buffer Overflow Vulnerability | 2008-09-03T12:33+09:00 | 2008-09-03T12:33+09:00 |
| jvndb-2008-000055 | Blogn vulnerable to cross-site scripting | 2008-09-02T17:22+09:00 | 2008-09-02T17:22+09:00 |
| jvndb-2008-000054 | Blogn vulnerable to cross-site request forgery | 2008-09-02T17:22+09:00 | 2008-09-02T17:22+09:00 |
| jvndb-2008-000053 | mysql-lists from AquaGardenSoft Co.,Ltd. vulnerable to cross-site scripting | 2008-09-02T17:05+09:00 | 2008-09-02T17:05+09:00 |
| jvndb-2008-000049 | Vulnerability in La!cooda WIZ and LacoodaST allowing an arbitrary PHP script execution | 2008-09-02T17:03+09:00 | 2008-09-02T17:03+09:00 |
| jvndb-2008-000048 | La!cooda WIZ and LacoodaST vulnerable to cross-site scripting | 2008-09-02T17:02+09:00 | 2008-09-02T17:02+09:00 |
| jvndb-2008-000047 | LacoodaST from SpaceTag, Inc. session fixation vulnerability | 2008-09-02T17:01+09:00 | 2008-09-02T17:01+09:00 |
| jvndb-2008-000046 | La!cooda WIZ and LacoodaST vulnerable to cross-site request forgery | 2008-09-02T16:58+09:00 | 2008-09-02T16:58+09:00 |
| jvndb-2008-000050 | Virus Security and Virus Security ZERO denial of service (DoS) vulnerability | 2008-08-14T18:15+09:00 | 2008-08-14T18:15+09:00 |
| jvndb-2008-000037 | Multiple Panasonic Communications Co., Ltd. network cameras vulnerable to cross-site scripting | 2008-08-04T14:34+09:00 | 2008-08-04T14:34+09:00 |
| jvndb-2008-001514 | Cross-Site Scripting Vulnerability in Hitachi Collaboration - Online Community Management | 2008-07-30T13:46+09:00 | 2008-07-30T13:46+09:00 |
| jvndb-2008-001513 | Cross-Site Scripting Vulnerability in Hitachi Web Server Status Information Display Function | 2008-07-30T13:45+09:00 | 2014-05-21T18:19+09:00 |
| jvndb-2008-000045 | Geeklog Forum Plugin vulnerable to cross-site scripting | 2008-07-29T14:57+09:00 | 2008-07-29T14:57+09:00 |
| jvndb-2008-000044 | K's CGI Access Log Kaiseki (Jcode.pm) vulnerable to cross-site scripting | 2008-07-29T14:56+09:00 | 2008-07-29T14:56+09:00 |
| jvndb-2008-000043 | K's CGI Access Log Kaiseki (jcode.pl) vulnerable to cross-site scripting | 2008-07-29T14:56+09:00 | 2008-07-29T14:56+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0960 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-11-17T00:00:00.000000 | 2023-11-17T00:00:00.000000 |
| certfr-2023-avi-0959 | Multiples vulnérabilités dans Microsoft Edge | 2023-11-17T00:00:00.000000 | 2023-11-17T00:00:00.000000 |
| certfr-2023-avi-0958 | Multiples vulnérabilités dans IBM | 2023-11-17T00:00:00.000000 | 2023-11-17T00:00:00.000000 |
| certfr-2023-avi-0957 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-11-17T00:00:00.000000 | 2023-11-17T00:00:00.000000 |
| certfr-2023-avi-0956 | Multiples vulnérabilités dans les produits Splunk | 2023-11-17T00:00:00.000000 | 2023-11-17T00:00:00.000000 |
| certfr-2023-avi-0955 | Vulnérabilité dans les produits Cisco | 2023-11-17T00:00:00.000000 | 2023-11-17T00:00:00.000000 |
| certfr-2023-avi-0954 | Multiples vulnérabilités dans Nessus et Nessus Agent | 2023-11-17T00:00:00.000000 | 2023-11-17T00:00:00.000000 |
| certfr-2023-avi-0953 | Multiples vulnérabilités dans les produits Intel | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0952 | Vulnérabilité dans Progress WS_FTP Server | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0951 | Multiples vulnérabilités dans Android et Pixel | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0950 | Multiples vulnérabilités dans Juniper Secure Analytics | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0949 | Vulnérabilité dans Wireshark NetScreen file parser | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0948 | Multiples vulnérabilités dans Citrix Hypervisor | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0947 | Multiples vulnérabilités dans les produits Microsoft | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0946 | Vulnérabilité dans Microsoft Azure | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0945 | Multiples vulnérabilités dans Microsoft .Net | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0944 | Multiples vulnérabilités dans Microsoft Windows | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0943 | Multiples vulnérabilités dans Microsoft Office | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0942 | Multiples vulnérabilités dans les produits SAP | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0941 | Multiples vulnérabilités dans les produits Aruba | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0940 | Multiples vulnérabilités dans Google Chrome | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0939 | Multiples vulnérabilités dans les produits Adobe | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0938 | Multiples vulnérabilités dans Xen | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0937 | Multiples vulnérabilités dans Kibana et Logstash | 2023-11-15T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0936 | Vulnérabilité dans VMware Cloud Director Appliance | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0935 | Multiples vulnérabilités dans les produits Siemens | 2023-11-14T00:00:00.000000 | 2023-11-14T00:00:00.000000 |
| certfr-2023-avi-0934 | Multiples vulnérabilités dans Typo3 | 2023-11-14T00:00:00.000000 | 2023-11-14T00:00:00.000000 |
| certfr-2023-avi-0933 | Multiples vulnérabilités dans les produits Schneider Electric | 2023-11-14T00:00:00.000000 | 2023-11-14T00:00:00.000000 |
| certfr-2023-avi-0932 | Vulnérabilité dans Microsoft Edge | 2023-11-13T00:00:00.000000 | 2023-11-13T00:00:00.000000 |
| certfr-2023-avi-0931 | Multiples vulnérabilités dans les produits Qnap | 2023-11-13T00:00:00.000000 | 2023-11-13T00:00:00.000000 |