Search

Expected end of text, found '/' (at char 33), (line:1, col:34)
Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (360021 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2026-42411 2 Wordpress, Xserver 2 Wordpress, Cloudsecure Wp Security 2026-06-23 8.1 High
Unauthenticated Broken Authentication in CloudSecure WP Security <= 1.4.7 versions.
CVE-2026-42649 2 Archetyped, Wordpress 2 Favicon Rotator, Wordpress 2026-06-23 7.1 High
Unauthenticated Cross Site Scripting (XSS) in Favicon Rotator <= 1.2.11 versions.
CVE-2026-42650 2 Ruben Garcia, Wordpress 2 Automatorwp, Wordpress 2026-06-23 7.2 High
Unauthenticated Cross Site Scripting (XSS) in AutomatorWP <= 5.6.7 versions.
CVE-2026-42655 2 Wordpress, Wpmanageninja 2 Wordpress, Best Payments Plugin For Wp 2026-06-23 7.5 High
Unauthenticated Bypass Vulnerability in Best Payments Plugin for WP <= 4.6.19 versions.
CVE-2026-42656 2 Wasiliy Strecker, Wordpress 2 Contest Gallery, Wordpress 2026-06-23 6.5 Medium
Subscriber Cross Site Scripting (XSS) in Contest Gallery <= 28.1.6 versions.
CVE-2026-42657 2 Wasiliy Strecker, Wordpress 2 Contest Gallery, Wordpress 2026-06-23 6.5 Medium
Unauthenticated Other Vulnerability Type in Contest Gallery <= 28.1.7 versions.
CVE-2026-42660 2 Wasiliy Strecker, Wordpress 2 Contest Gallery, Wordpress 2026-06-23 6.5 Medium
Subscriber Sensitive Data Exposure in Contest Gallery <= 28.1.7 versions.
CVE-2026-42662 2 Liquid Web / Stellarwp, Wordpress 2 Event Tickets, Wordpress 2026-06-23 6.5 Medium
Unauthenticated Bypass Vulnerability in Event Tickets <= 5.27.5 versions.
CVE-2026-42664 2 Motive Commerce Search, Wordpress 2 Ai Product Search For Woocommerce – Motive Commerce Search, Wordpress 2026-06-23 8.2 High
Unauthenticated Broken Access Control in AI Product Search for WooCommerce &#8211; Motive Commerce Search <= 1.38.2 versions.
CVE-2026-42665 2 Passionate Programmer Peter, Wordpress 2 Wp Data Access, Wordpress 2026-06-23 9.3 Critical
Unauthenticated SQL Injection in WP Data Access <= 5.5.70 versions.
CVE-2026-42666 2 Dimitri Grassi, Wordpress 2 Salon Booking System, Wordpress 2026-06-23 7.5 High
Unauthenticated Broken Access Control in Salon booking system <= 10.30.25 versions.
CVE-2026-42752 2 Mra13 / Team Tips And Tricks Hq, Wordpress 2 Stripe Payments, Wordpress 2026-06-23 6.5 Medium
Unauthenticated Bypass Vulnerability in Stripe Payments <= 2.0.98 versions.
CVE-2026-45439 2 Realtyna, Wordpress 2 Realtyna Organic Idx Plugin, Wordpress 2026-06-23 9.3 Critical
Unauthenticated SQL Injection in Realtyna Organic IDX plugin <= 5.1.0 versions.
CVE-2026-48835 2 Awesomemotive, Wordpress 2 Contact Form By Wpforms, Wordpress 2026-06-23 7.5 High
Unauthenticated Broken Access Control in Contact Form by WPForms <= 1.10.0.4 versions.
CVE-2026-48836 2 Mantrabrain, Wordpress 2 Easy Invoice, Wordpress 2026-06-23 10 Critical
Unauthenticated Remote Code Execution (RCE) in Easy Invoice <= 2.1.19 versions.
CVE-2026-48868 2 Mra13 / Team Tips And Tricks Hq, Wordpress 2 Simple Shopping Cart, Wordpress 2026-06-23 7.5 High
Unauthenticated Insecure Direct Object References (IDOR) in Simple Shopping Cart <= 5.2.9 versions.
CVE-2026-48871 2 Takashi Kitajima, Wordpress 2 Mw Wp Form, Wordpress 2026-06-23 7.1 High
Unauthenticated Cross Site Scripting (XSS) in MW WP Form <= 5.1.3 versions.
CVE-2026-48876 2 Web Guy, Wordpress 2 Stop Spammers, Wordpress 2026-06-23 7.1 High
Unauthenticated Cross Site Scripting (XSS) in Stop Spammers <= 2026.3 versions.
CVE-2026-48886 2 Ahmad, Wordpress 2 Js Help Desk, Wordpress 2026-06-23 9.3 Critical
Unauthenticated SQL Injection in JS Help Desk <= 3.0.9 versions.
CVE-2026-48887 2 Ahmad, Wordpress 2 Js Help Desk, Wordpress 2026-06-23 6.5 Medium
Unauthenticated Broken Access Control in JS Help Desk <= 3.0.9 versions.