Search
Search Results (358142 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-49070 | 2026-06-15 | 7.5 High | ||
| Unauthenticated Broken Access Control in Knit Pay <= 9.4.0.0 versions. | ||||
| CVE-2026-49068 | 2026-06-15 | 7.5 High | ||
| Subscriber Sensitive Data Exposure in Coupon Affiliates <= 7.8.1 versions. | ||||
| CVE-2026-49067 | 2026-06-15 | 9.3 Critical | ||
| Unauthenticated SQL Injection in Advanced 301 and 302 Redirect <= 1.6.9 versions. | ||||
| CVE-2026-49066 | 2026-06-15 | 7.5 High | ||
| Unauthenticated Sensitive Data Exposure in Conekta Payment Gateway <= 6.0.0 versions. | ||||
| CVE-2026-49065 | 2026-06-15 | 8.2 High | ||
| Unauthenticated Broken Access Control in Hippoo Mobile App for WooCommerce <= 1.9.5 versions. | ||||
| CVE-2026-49063 | 2026-06-15 | 7.3 High | ||
| Unauthenticated Privilege Escalation in Listdom <= 5.5.0 versions. | ||||
| CVE-2026-49061 | 2026-06-15 | 7.5 High | ||
| Unauthenticated Arbitrary File Download in WPC Product Options for WooCommerce <= 3.2.1 versions. | ||||
| CVE-2026-49056 | 2026-06-15 | 7.5 High | ||
| Unauthenticated Sensitive Data Exposure in WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels <= 4.9.4 versions. | ||||
| CVE-2026-49055 | 2026-06-15 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Drag and Drop Multiple File Upload – Contact Form 7 <= 1.3.9.7 versions. | ||||
| CVE-2026-49043 | 2026-06-15 | 4.7 Medium | ||
| Unauthenticated Cross Site Request Forgery (CSRF) in WP Migrate Lite <= 2.7.8 versions. | ||||
| CVE-2026-48970 | 2026-06-15 | 8.1 High | ||
| Unauthenticated Broken Authentication in Really Simple SSL <= 9.5.10 versions. | ||||
| CVE-2026-48966 | 2026-06-15 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Funnel Builder by FunnelKit <= 3.15.0.2 versions. | ||||
| CVE-2026-48965 | 2026-06-15 | 6.5 Medium | ||
| Subscriber Sensitive Data Exposure in XCloner <= 4.8.6 versions. | ||||
| CVE-2026-48964 | 2026-06-15 | 8.5 High | ||
| Subscriber SQL Injection in ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.6 versions. | ||||
| CVE-2026-48889 | 2026-06-15 | 8.8 High | ||
| Subscriber Privilege Escalation in Amelia <= 2.3 versions. | ||||
| CVE-2026-48887 | 2026-06-15 | 6.5 Medium | ||
| Unauthenticated Broken Access Control in JS Help Desk <= 3.0.9 versions. | ||||
| CVE-2026-48886 | 2026-06-15 | 9.3 Critical | ||
| Unauthenticated SQL Injection in JS Help Desk <= 3.0.9 versions. | ||||
| CVE-2026-48885 | 2026-06-15 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in HollerBox <= 2.3.10.1 versions. | ||||
| CVE-2026-48883 | 2026-06-15 | 7.5 High | ||
| Unauthenticated Broken Access Control in WPC Product Bundles for WooCommerce <= 8.5.3 versions. | ||||
| CVE-2026-48882 | 2026-06-15 | 8.5 High | ||
| Subscriber SQL Injection in WP Time Slots Booking Form <= 1.2.50 versions. | ||||