Export limit exceeded: 359526 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 359526 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (359526 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-69110 | 2 Themerex, Wordpress | 2 Airsupply, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated Local File Inclusion in AirSupply <= 2.0.0 versions. | ||||
| CVE-2025-69129 | 2 Extendons, Wordpress | 3 Wordpress & Woocommerce Scraper Plugin, Wordpress & Woocommerce Scraper Plugin, Import Data From Any Site, Wordpress | 2026-06-20 | 10 Critical |
| Unauthenticated Arbitrary File Upload in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site <= 1.0.7 versions. | ||||
| CVE-2025-69135 | 2 Curlythemes, Wordpress | 2 Events Schedule - Wordpress Events Calendar Plugin, Wordpress | 2026-06-20 | 8.5 High |
| Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin <= 2.7.2 versions. | ||||
| CVE-2025-69138 | 2 Jthemes, Wordpress | 2 Genemy, Wordpress | 2026-06-20 | 8.8 High |
| Subscriber Privilege Escalation in Genemy <= 1.6.6 versions. | ||||
| CVE-2025-69161 | 2 Themerex, Wordpress | 2 Snowy, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated Local File Inclusion in Snowy <= 1.13 versions. | ||||
| CVE-2025-69171 | 2 Themerex, Wordpress | 2 Orpheus, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated Local File Inclusion in Orpheus <= 1.3 versions. | ||||
| CVE-2025-69179 | 2 Theme Passion, Wordpress | 2 Support Ticket Management System, Wordpress | 2026-06-20 | 9.8 Critical |
| Unauthenticated Privilege Escalation in Support Ticket Management System <= 1.9 versions. | ||||
| CVE-2026-22327 | 2 Wordpress, Zozothemes | 2 Wordpress, Restaurt | 2026-06-20 | 9.9 Critical |
| Subscriber Arbitrary File Upload in Restaurt <= 1.0.4 versions. | ||||
| CVE-2026-22328 | 2 Vamtam, Wordpress | 2 Auto Repair, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in Auto Repair <= 22.6 versions. | ||||
| CVE-2026-22329 | 2 Themeum, Wordpress | 2 Skillate, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in Skillate <= 1.2.10 versions. | ||||
| CVE-2026-22334 | 2 Wordpress, Wpos | 2 Wordpress, Woocommerce Book Price | 2026-06-20 | 7.5 High |
| Subscriber Arbitrary File Download in Woocommerce Book Price <= 1.3 versions. | ||||
| CVE-2026-22335 | 2 Wc Lovers., Wordpress | 2 Woocommerce Frontend Manager – Ultimate, Wordpress | 2026-06-20 | 8.5 High |
| Subscriber SQL Injection in WooCommerce Frontend Manager – Ultimate < 6.7.7 versions. | ||||
| CVE-2026-22339 | 2 Jobster Marketplace, Wordpress | 2 Wpjobster, Wordpress | 2026-06-20 | 7.1 High |
| Unauthenticated Cross Site Scripting (XSS) in WPJobster <= 6.3.5 versions. | ||||
| CVE-2026-22340 | 2 Jobster Marketplace, Wordpress | 2 Wpjobster, Wordpress | 2026-06-20 | 9.3 Critical |
| Unauthenticated SQL Injection in WPJobster <= 6.3.5 versions. | ||||
| CVE-2026-22342 | 2 Premiumpress Limited., Wordpress | 2 Wordpress Dating Theme, Wordpress | 2026-06-20 | 8.8 High |
| Unauthenticated Cross Site Request Forgery (CSRF) in WordPress Dating Theme <= 11.2.0 versions. | ||||
| CVE-2026-22343 | 2 Premiumpress Limited., Wordpress | 2 Wordpress Dating Theme, Wordpress | 2026-06-20 | 8.6 High |
| Unauthenticated Broken Access Control in WordPress Dating Theme <= 11.2.0 versions. | ||||
| CVE-2026-27041 | 2 Studio Keren Aga Ltd., Wordpress | 2 Unlimited Elements For Elementor (premium), Wordpress | 2026-06-20 | 9.9 Critical |
| Contributor Arbitrary File Upload in Unlimited Elements for Elementor (Premium) <= 2.0.6 versions. | ||||
| CVE-2026-27400 | 2 Ovatheme, Wordpress | 2 Bookpro, Wordpress | 2026-06-20 | 8.6 High |
| Unauthenticated Arbitrary File Deletion in BookPro <= 1.1.0 versions. | ||||
| CVE-2026-39545 | 2 Select-themes, Wordpress | 2 Zermatt, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated PHP Object Injection in Zermatt <= 1.6.1 versions. | ||||
| CVE-2026-39573 | 2 Select-themes, Wordpress | 2 Mildhill, Wordpress | 2026-06-20 | 8.1 High |
| Unauthenticated PHP Object Injection in Mildhill <= 1.5 versions. | ||||