Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2026-42749 Vulnerability in CVE-2026-42749 (CVE-2026-42749)
vulnerability in CVE-2026-42749 (CVE-2026-42749). Risk of unauthorized operations or information disclosure.
CVE-2026-42753 Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows...
Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows...
CVE-2026-42754 Cross-Site Scripting (XSS) in CVE-2026-42754 (CVE-2026-42754)
cross-site scripting in CVE-2026-42754 (CVE-2026-42754). Risk of unauthorized operations or information disclosure.
CVE-2026-42751 Cross-Site Scripting (XSS) in CVE-2026-42751 (CVE-2026-42751)
cross-site scripting in CVE-2026-42751 (CVE-2026-42751). Risk of unauthorized operations or information disclosure.
CVE-2026-42750 Cross-Site Scripting (XSS) in CVE-2026-42750 (CVE-2026-42750)
cross-site scripting in CVE-2026-42750 (CVE-2026-42750). Risk of unauthorized operations or information disclosure.
CVE-2026-42740 SQL Injection in sqli (CVE-2026-42740)
SQL injection in sqli (CVE-2026-42740). Confidential information can be exposed externally.
CVE-2026-42736 Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
CVE-2026-42737 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
CVE-2026-42735 Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare...
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare...
CVE-2026-42745 Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online...
Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online...
CVE-2026-42739 Cross-Site Scripting (XSS) in CVE-2026-42739 (CVE-2026-42739)
cross-site scripting in CVE-2026-42739 (CVE-2026-42739). Risk of unauthorized operations or information disclosure.
CVE-2026-42738 Cross-Site Scripting (XSS) in CVE-2026-42738 (CVE-2026-42738)
cross-site scripting in CVE-2026-42738 (CVE-2026-42738). Risk of unauthorized operations or information disclosure.
CVE-2026-42727 SQL Injection in sqli (CVE-2026-42727)
SQL injection in sqli (CVE-2026-42727). Confidential information can be exposed externally.
CVE-2026-42730 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
CVE-2026-42731 Vulnerability in privilege-escalation (CVE-2026-42731)
vulnerability in privilege-escalation (CVE-2026-42731). Successful exploitation can lead to full system takeover.
CVE-2026-42734 Cross-Site Scripting (XSS) in CVE-2026-42734 (CVE-2026-42734)
cross-site scripting in CVE-2026-42734 (CVE-2026-42734). Risk of unauthorized operations or information disclosure.
CVE-2026-42733 Cross-Site Scripting (XSS) in CVE-2026-42733 (CVE-2026-42733)
cross-site scripting in CVE-2026-42733 (CVE-2026-42733). Risk of unauthorized operations or information disclosure.
CVE-2026-42729 Cross-Site Scripting (XSS) in CVE-2026-42729 (CVE-2026-42729)
cross-site scripting in CVE-2026-42729 (CVE-2026-42729). Risk of unauthorized operations or information disclosure.
CVE-2026-42728 Cross-Site Scripting (XSS) in CVE-2026-42728 (CVE-2026-42728)
cross-site scripting in CVE-2026-42728 (CVE-2026-42728). Risk of unauthorized operations or information disclosure.
CVE-2026-3348 Cross-Site Scripting (XSS) in wordpress (CVE-2026-3348)
cross-site scripting in wordpress (CVE-2026-3348). Risk of unauthorized operations or information disclosure.
CVE-2026-3349 Cross-Site Scripting (XSS) in wordpress (CVE-2026-3349)
cross-site scripting in wordpress (CVE-2026-3349). Risk of unauthorized operations or information disclosure.
CVE-2026-2280 Cross-Site Scripting (XSS) in wordpress (CVE-2026-2280)
cross-site scripting in wordpress (CVE-2026-2280). Risk of unauthorized operations or information disclosure.
CVE-2026-2288 Cross-Site Scripting (XSS) in wordpress (CVE-2026-2288)
cross-site scripting in wordpress (CVE-2026-2288). Risk of unauthorized operations or information disclosure.
CVE-2026-40846 SQL Injection in sqli (CVE-2026-40846)
SQL injection in sqli (CVE-2026-40846). Confidential information can be exposed externally.
CVE-2026-40847 SQL Injection in sqli (CVE-2026-40847)
SQL injection in sqli (CVE-2026-40847). Confidential information can be exposed externally.
CVE-2026-40845 SQL Injection in sqli (CVE-2026-40845)
SQL injection in sqli (CVE-2026-40845). Confidential information can be exposed externally.
CVE-2026-40848 SQL Injection in sqli (CVE-2026-40848)
SQL injection in sqli (CVE-2026-40848). Confidential information can be exposed externally.
CVE-2026-40850 SQL Injection in sqli (CVE-2026-40850)
SQL injection in sqli (CVE-2026-40850). Confidential information can be exposed externally.
CVE-2026-40844 SQL Injection in sqli (CVE-2026-40844)
SQL injection in sqli (CVE-2026-40844). Confidential information can be exposed externally.
CVE-2026-40849 SQL Injection in sqli (CVE-2026-40849)
SQL injection in sqli (CVE-2026-40849). Confidential information can be exposed externally.
CVE-2026-8054 SQL Injection in sqli (CVE-2026-8054)
SQL injection in sqli (CVE-2026-8054). Risk of unauthorized operations or information disclosure.
CVE-2026-48968 Cross-Site Scripting (XSS) in CVE-2026-48968 (CVE-2026-48968)
cross-site scripting in CVE-2026-48968 (CVE-2026-48968). Risk of unauthorized operations or information disclosure.
CVE-2026-40831 SQL Injection in sqli (CVE-2026-40831)
SQL injection in sqli (CVE-2026-40831). Confidential information can be exposed externally.
CVE-2026-40827 SQL Injection in sqli (CVE-2026-40827)
SQL injection in sqli (CVE-2026-40827). Confidential information can be exposed externally.
CVE-2026-40828 SQL Injection in sqli (CVE-2026-40828)
SQL injection in sqli (CVE-2026-40828). Confidential information can be exposed externally.
CVE-2026-40829 SQL Injection in sqli (CVE-2026-40829)
SQL injection in sqli (CVE-2026-40829). Confidential information can be exposed externally.
CVE-2026-40830 SQL Injection in sqli (CVE-2026-40830)
SQL injection in sqli (CVE-2026-40830). Confidential information can be exposed externally.
CVE-2026-40839 SQL Injection in sqli (CVE-2026-40839)
SQL injection in sqli (CVE-2026-40839). Confidential information can be exposed externally.
CVE-2026-40834 SQL Injection in sqli (CVE-2026-40834)
SQL injection in sqli (CVE-2026-40834). Confidential information can be exposed externally.
CVE-2026-40838 SQL Injection in sqli (CVE-2026-40838)
SQL injection in sqli (CVE-2026-40838). Confidential information can be exposed externally.
CVE-2026-40842 SQL Injection in sqli (CVE-2026-40842)
SQL injection in sqli (CVE-2026-40842). Confidential information can be exposed externally.
CVE-2026-40835 SQL Injection in sqli (CVE-2026-40835)
SQL injection in sqli (CVE-2026-40835). Confidential information can be exposed externally.
CVE-2026-40841 SQL Injection in sqli (CVE-2026-40841)
SQL injection in sqli (CVE-2026-40841). Confidential information can be exposed externally.
CVE-2026-40833 SQL Injection in sqli (CVE-2026-40833)
SQL injection in sqli (CVE-2026-40833). Confidential information can be exposed externally.
CVE-2026-40840 SQL Injection in sqli (CVE-2026-40840)
SQL injection in sqli (CVE-2026-40840). Confidential information can be exposed externally.
CVE-2026-40843 SQL Injection in sqli (CVE-2026-40843)
SQL injection in sqli (CVE-2026-40843). Confidential information can be exposed externally.
CVE-2026-40836 SQL Injection in sqli (CVE-2026-40836)
SQL injection in sqli (CVE-2026-40836). Confidential information can be exposed externally.
CVE-2026-40832 SQL Injection in sqli (CVE-2026-40832)
SQL injection in sqli (CVE-2026-40832). Confidential information can be exposed externally.
CVE-2026-40837 SQL Injection in sqli (CVE-2026-40837)
SQL injection in sqli (CVE-2026-40837). Confidential information can be exposed externally.
CVE-2025-52747 Cross-Site Scripting (XSS) in CVE-2025-52747 (CVE-2025-52747)
cross-site scripting in CVE-2025-52747 (CVE-2025-52747). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →