Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-69086 | 8.1 (v3.1) | WordPress Issabella theme <= 1.1.2 - Local File Inclus… |
jwsthemes |
Issabella |
2026-01-06T16:26:05.178Z | 2026-04-28T16:14:36.239Z |
| cve-2025-69080 | 8.1 (v3.1) | WordPress Gecko theme <= 1.9.8 - Local File Inclusion … |
JanStudio |
Gecko |
2026-01-07T11:59:55.127Z | 2026-04-28T16:14:36.169Z |
| cve-2025-69082 | 7.1 (v3.1) | WordPress Arlo theme <= 6.0.3 - Cross Site Scripting (… |
Frenify |
Arlo |
2026-01-07T11:54:31.633Z | 2026-04-28T16:14:36.129Z |
| cve-2025-69081 | 8.1 (v3.1) | WordPress Hope theme <= 3.0.0 - Local File Inclusion v… |
ThemeREX |
Hope |
2026-01-07T11:56:19.363Z | 2026-04-28T16:14:36.104Z |
| cve-2025-69083 | 8.1 (v3.1) | WordPress Frappé theme <= 1.8 - Local File Inclusion v… |
Elated-Themes |
Frappé |
2026-01-06T16:43:57.685Z | 2026-04-28T16:14:36.055Z |
| cve-2025-69085 | 7.1 (v3.1) | WordPress JobBank plugin <= 1.2.2 - Reflected Cross Si… |
e-plugins |
JobBank |
2026-01-06T16:27:11.662Z | 2026-04-28T16:14:36.027Z |
| cve-2025-69074 | 8.1 (v3.1) | WordPress Pearson Specter theme <= 1.11.3 - Local File… |
AncoraThemes |
Pearson Specter |
2026-01-22T16:52:24.806Z | 2026-04-28T16:14:36.009Z |
| cve-2025-69043 | 8.1 (v3.1) | WordPress Rashy theme <= 1.1.3 - Local File Inclusion … |
goalthemes |
Rashy |
2026-01-22T16:52:18.567Z | 2026-04-28T16:14:35.625Z |
| cve-2025-69063 | 8.6 (v3.1) | WordPress New User Approve plugin <= 3.2.0 - Broken Ac… |
Saad Iqbal |
New User Approve |
2026-02-20T15:46:45.384Z | 2026-04-28T16:14:35.569Z |
| cve-2025-69042 | 8.1 (v3.1) | WordPress Lindo theme <= 1.2.5 - Local File Inclusion … |
goalthemes |
Lindo |
2026-01-22T16:52:18.326Z | 2026-04-28T16:14:35.158Z |
| cve-2025-69039 | 8.1 (v3.1) | WordPress Bailly theme <= 1.3.4 - Local File Inclusion… |
goalthemes |
Bailly |
2026-01-22T16:52:17.742Z | 2026-04-28T16:14:35.055Z |
| cve-2025-69034 | 8.1 (v3.1) | WordPress Lekker theme <= 1.8 - Local File Inclusion v… |
Mikado-Themes |
Lekker |
2025-12-30T10:47:57.680Z | 2026-04-28T16:14:35.040Z |
| cve-2025-69040 | 8.1 (v3.1) | WordPress Bfres theme <= 1.2.1 - Local File Inclusion … |
goalthemes |
Bfres |
2026-01-22T16:52:17.934Z | 2026-04-28T16:14:35.003Z |
| cve-2025-69031 | 5.3 (v3.1) | WordPress Arcane theme <= 3.6.6 - Broken Access Contro… |
Skywarrior |
Arcane |
2025-12-30T10:47:57.098Z | 2026-04-28T16:14:34.952Z |
| cve-2025-69029 | 5.4 (v3.1) | WordPress Struktur theme <= 2.5.1 - Insecure Direct Ob… |
Select-Themes |
Struktur |
2025-12-30T10:47:56.721Z | 2026-04-28T16:14:34.907Z |
| cve-2025-69032 | 5.4 (v3.1) | WordPress FiveStar theme <= 1.7 - Insecure Direct Obje… |
Mikado-Themes |
FiveStar |
2025-12-30T10:47:57.290Z | 2026-04-28T16:14:34.872Z |
| cve-2025-69030 | 5.4 (v3.1) | WordPress Backpack Traveler theme <= 2.10.3 - Insecure… |
Mikado-Themes |
Backpack Traveler |
2025-12-30T10:47:56.911Z | 2026-04-28T16:14:34.790Z |
| cve-2025-69024 | 6.5 (v3.1) | WordPress BizPrint plugin <= 4.6.7 - Broken Access Con… |
bizswoop |
BizPrint |
2025-12-30T10:47:55.715Z | 2026-04-28T16:14:34.654Z |
| cve-2025-69017 | 6.5 (v3.1) | WordPress RestroPress plugin <= 3.2.8.6 - Cross Site S… |
Magnigenie |
RestroPress |
2025-12-30T10:47:54.276Z | 2026-04-28T16:14:34.519Z |
| cve-2025-69027 | 5.3 (v3.1) | WordPress Product Delivery Date for WooCommerce – Lite… |
tychesoftwares |
Product Delivery Date for WooCommerce – Lite |
2025-12-30T10:47:56.343Z | 2026-04-28T16:14:34.495Z |
| cve-2025-69026 | 4.3 (v3.1) | WordPress PopupKit plugin <= 2.1.5 - Sensitive Data Ex… |
Roxnor |
PopupKit |
2025-12-30T10:47:56.141Z | 2026-04-28T16:14:34.481Z |
| cve-2025-69021 | 5.4 (v3.1) | WordPress Popup box plugin <= 6.0.7 - Cross Site Reque… |
Ays Pro |
Popup box |
2025-12-30T10:47:55.134Z | 2026-04-28T16:14:34.427Z |
| cve-2025-69015 | 3.8 (v3.1) | WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken A… |
Automattic |
Crowdsignal Forms |
2025-12-30T10:47:53.892Z | 2026-04-28T16:14:34.426Z |
| cve-2025-69022 | 5.4 (v3.1) | WordPress HR Management Lite plugin <= 3.6 - Broken Ac… |
Weblizar - WordPress Themes & Plugin |
HR Management Lite |
2025-12-30T10:47:55.337Z | 2026-04-28T16:14:34.406Z |
| cve-2025-69013 | 4.3 (v3.1) | WordPress Stratum plugin <= 1.6.1 - Broken Access Cont… |
jetmonsters |
Stratum |
2025-12-30T10:47:53.465Z | 2026-04-28T16:14:34.274Z |
| cve-2025-69014 | 4.9 (v3.1) | WordPress Youzify plugin <= 1.3.7 - Server Side Reques… |
Youzify |
Youzify |
2025-12-30T10:47:53.707Z | 2026-04-28T16:14:34.221Z |
| cve-2025-69012 | 4.3 (v3.1) | WordPress Event Organiser plugin <= 3.12.8 - Broken Ac… |
Stephen Harris |
Event Organiser |
2025-12-30T10:47:53.274Z | 2026-04-28T16:14:34.195Z |
| cve-2025-69009 | 5.3 (v3.1) | WordPress Medicalequipment theme <= 1.0.9 - Broken Acc… |
kamleshyadav |
Medicalequipment |
2025-12-30T10:47:52.874Z | 2026-04-28T16:14:34.032Z |
| cve-2025-68999 | 8.5 (v3.1) | WordPress Happy Addons for Elementor plugin <= 3.20.4 … |
HappyMonster |
Happy Addons for Elementor |
2026-01-22T16:52:15.685Z | 2026-04-28T16:14:33.851Z |
| cve-2025-68998 | 5.4 (v3.1) | WordPress Heateor Social Login plugin <= 1.1.39 - Cros… |
Heateor Support |
Heateor Social Login |
2025-12-30T10:47:52.118Z | 2026-04-28T16:14:33.847Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2008-000052 | Webservice-DIC shop_v50 and shop_v52 vulnerable to cross-site scripting | 2008-09-08T17:01+09:00 | 2008-09-08T17:01+09:00 |
| jvndb-2008-001585 | Hitachi JP1/File Transmission Server/FTP Unauthorized File Permission Change Vulnerability | 2008-09-05T12:24+09:00 | 2008-09-05T12:24+09:00 |
| jvndb-2008-001584 | Hitachi JP1/File Transmission Server/FTP Transmission Failure Problem | 2008-09-05T12:23+09:00 | 2008-09-05T12:23+09:00 |
| jvndb-2008-001575 | Fujitsu Interstage Application Server Single Sign-On Buffer Overflow Vulnerability | 2008-09-03T12:33+09:00 | 2008-09-03T12:33+09:00 |
| jvndb-2008-000055 | Blogn vulnerable to cross-site scripting | 2008-09-02T17:22+09:00 | 2008-09-02T17:22+09:00 |
| jvndb-2008-000054 | Blogn vulnerable to cross-site request forgery | 2008-09-02T17:22+09:00 | 2008-09-02T17:22+09:00 |
| jvndb-2008-000053 | mysql-lists from AquaGardenSoft Co.,Ltd. vulnerable to cross-site scripting | 2008-09-02T17:05+09:00 | 2008-09-02T17:05+09:00 |
| jvndb-2008-000049 | Vulnerability in La!cooda WIZ and LacoodaST allowing an arbitrary PHP script execution | 2008-09-02T17:03+09:00 | 2008-09-02T17:03+09:00 |
| jvndb-2008-000048 | La!cooda WIZ and LacoodaST vulnerable to cross-site scripting | 2008-09-02T17:02+09:00 | 2008-09-02T17:02+09:00 |
| jvndb-2008-000047 | LacoodaST from SpaceTag, Inc. session fixation vulnerability | 2008-09-02T17:01+09:00 | 2008-09-02T17:01+09:00 |
| jvndb-2008-000046 | La!cooda WIZ and LacoodaST vulnerable to cross-site request forgery | 2008-09-02T16:58+09:00 | 2008-09-02T16:58+09:00 |
| jvndb-2008-000050 | Virus Security and Virus Security ZERO denial of service (DoS) vulnerability | 2008-08-14T18:15+09:00 | 2008-08-14T18:15+09:00 |
| jvndb-2008-000037 | Multiple Panasonic Communications Co., Ltd. network cameras vulnerable to cross-site scripting | 2008-08-04T14:34+09:00 | 2008-08-04T14:34+09:00 |
| jvndb-2008-001514 | Cross-Site Scripting Vulnerability in Hitachi Collaboration - Online Community Management | 2008-07-30T13:46+09:00 | 2008-07-30T13:46+09:00 |
| jvndb-2008-000045 | Geeklog Forum Plugin vulnerable to cross-site scripting | 2008-07-29T14:57+09:00 | 2008-07-29T14:57+09:00 |
| jvndb-2008-000044 | K's CGI Access Log Kaiseki (Jcode.pm) vulnerable to cross-site scripting | 2008-07-29T14:56+09:00 | 2008-07-29T14:56+09:00 |
| jvndb-2008-000043 | K's CGI Access Log Kaiseki (jcode.pl) vulnerable to cross-site scripting | 2008-07-29T14:56+09:00 | 2008-07-29T14:56+09:00 |
| jvndb-2008-000021 | Mozilla Firefox cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-07-29T14:54+09:00 |
| jvndb-2008-000042 | Multiple Century Systems routers vulnerable to cross-site request forgery | 2008-07-24T14:23+09:00 | 2008-07-24T14:23+09:00 |
| jvndb-2008-000041 | WebProxy from LunarNight Laboratory vulnerable to cross-site scripting | 2008-07-24T14:23+09:00 | 2008-07-24T14:23+09:00 |
| jvndb-2008-000040 | Directory traversal vulnerability in WebLogic Server and WebLogic Express plug-ins | 2008-07-24T14:22+09:00 | 2008-07-24T14:22+09:00 |
| jvndb-2008-000039 | Safari installed in iPod touch and iPhone vulnerable in handling server certificates | 2008-07-16T12:27+09:00 | 2008-07-16T12:27+09:00 |
| jvndb-2007-000457 | Apache Tomcat cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-07-11T13:48+09:00 |
| jvndb-2007-000456 | Apache Tomcat sample web application cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-07-11T13:48+09:00 |
| jvndb-2007-000297 | Apache Tomcat Accept-Language Header Cross-Site Scripting Vulnerability | 2008-05-21T00:00+09:00 | 2008-07-11T13:47+09:00 |
| jvndb-2008-000038 | Redmine vulnerable to cross-site scripting | 2008-07-08T12:15+09:00 | 2008-07-08T12:15+09:00 |
| jvndb-2008-000036 | FreeStyleWiki cross-site scripting vulnerability | 2008-07-08T12:14+09:00 | 2008-07-08T12:14+09:00 |
| jvndb-2008-000035 | Cybozu Garoon vulnerable to arbitrary script execution | 2008-07-08T12:14+09:00 | 2008-07-08T12:14+09:00 |
| jvndb-2008-000034 | Cybozu Garoon session fixation vulnerability | 2008-07-08T12:14+09:00 | 2008-07-08T12:14+09:00 |
| jvndb-2008-000033 | Multiple Cybozu products vulnerable to cross-site request forgery | 2008-07-08T12:14+09:00 | 2008-07-08T12:14+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0949 | Vulnérabilité dans Wireshark NetScreen file parser | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0948 | Multiples vulnérabilités dans Citrix Hypervisor | 2023-11-16T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0937 | Multiples vulnérabilités dans Kibana et Logstash | 2023-11-15T00:00:00.000000 | 2023-11-16T00:00:00.000000 |
| certfr-2023-avi-0947 | Multiples vulnérabilités dans les produits Microsoft | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0946 | Vulnérabilité dans Microsoft Azure | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0945 | Multiples vulnérabilités dans Microsoft .Net | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0944 | Multiples vulnérabilités dans Microsoft Windows | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0943 | Multiples vulnérabilités dans Microsoft Office | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0942 | Multiples vulnérabilités dans les produits SAP | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0941 | Multiples vulnérabilités dans les produits Aruba | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0940 | Multiples vulnérabilités dans Google Chrome | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0939 | Multiples vulnérabilités dans les produits Adobe | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0938 | Multiples vulnérabilités dans Xen | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0936 | Vulnérabilité dans VMware Cloud Director Appliance | 2023-11-15T00:00:00.000000 | 2023-11-15T00:00:00.000000 |
| certfr-2023-avi-0935 | Multiples vulnérabilités dans les produits Siemens | 2023-11-14T00:00:00.000000 | 2023-11-14T00:00:00.000000 |
| certfr-2023-avi-0934 | Multiples vulnérabilités dans Typo3 | 2023-11-14T00:00:00.000000 | 2023-11-14T00:00:00.000000 |
| certfr-2023-avi-0933 | Multiples vulnérabilités dans les produits Schneider Electric | 2023-11-14T00:00:00.000000 | 2023-11-14T00:00:00.000000 |
| certfr-2023-avi-0932 | Vulnérabilité dans Microsoft Edge | 2023-11-13T00:00:00.000000 | 2023-11-13T00:00:00.000000 |
| certfr-2023-avi-0931 | Multiples vulnérabilités dans les produits Qnap | 2023-11-13T00:00:00.000000 | 2023-11-13T00:00:00.000000 |
| certfr-2023-avi-0930 | Multiples vulnérabilités dans Symfony | 2023-11-13T00:00:00.000000 | 2023-11-13T00:00:00.000000 |
| certfr-2023-avi-0929 | Vulnérabilité dans SolarWinds Network Configuration Manager | 2023-11-13T00:00:00.000000 | 2023-11-13T00:00:00.000000 |
| certfr-2023-avi-0786 | Vulnérabilité dans Roundcube Webmail | 2023-09-28T00:00:00.000000 | 2023-11-13T00:00:00.000000 |
| certfr-2023-avi-0928 | Multiples vulnérabilités dans Microsoft Edge | 2023-11-10T00:00:00.000000 | 2023-11-10T00:00:00.000000 |
| certfr-2023-avi-0927 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-11-10T00:00:00.000000 | 2023-11-10T00:00:00.000000 |
| certfr-2023-avi-0926 | Multiples vulnérabilités dans IBM | 2023-11-10T00:00:00.000000 | 2023-11-10T00:00:00.000000 |
| certfr-2023-avi-0925 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-11-10T00:00:00.000000 | 2023-11-10T00:00:00.000000 |
| certfr-2023-avi-0924 | Multiples vulnérabilités dans PostgreSQL | 2023-11-10T00:00:00.000000 | 2023-11-10T00:00:00.000000 |
| certfr-2023-avi-0923 | Vulnérabilité dans Palo Alto Networks Cortex XSOAR | 2023-11-09T00:00:00.000000 | 2023-11-09T00:00:00.000000 |
| certfr-2023-avi-0922 | Multiples vulnérabilités dans IBM AIX | 2023-11-08T00:00:00.000000 | 2023-11-08T00:00:00.000000 |
| certfr-2023-avi-0921 | Vulnérabilité dans Google Chrome | 2023-11-08T00:00:00.000000 | 2023-11-08T00:00:00.000000 |