Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cms Clear
ID Title
CVE-2026-10824 Vulnerability in wordpress (CVE-2026-10824)
vulnerability in wordpress (CVE-2026-10824). Risk of unauthorized operations or information disclosure.
CVE-2026-9702 Vulnerability in wordpress (CVE-2026-9702)
vulnerability in wordpress (CVE-2026-9702). Data can be tampered with by attackers.
CVE-2026-2508 SQL Injection in wordpress (CVE-2026-2508)
SQL injection in wordpress (CVE-2026-2508). Confidential information can be exposed externally.
CVE-2026-12079 SQL Injection in wordpress (CVE-2026-12079)
SQL injection in wordpress (CVE-2026-12079). Confidential information can be exposed externally.
CVE-2026-10833 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10833)
cross-site scripting in wordpress (CVE-2026-10833). Risk of unauthorized operations or information disclosure.
CVE-2026-12077 SQL Injection in wordpress (CVE-2026-12077)
SQL injection in wordpress (CVE-2026-12077). Confidential information can be exposed externally.
CVE-2026-53038 Vulnerability in wordpress (CVE-2026-53038)
vulnerability in wordpress (CVE-2026-53038). Risk of unauthorized operations or information disclosure.
CVE-2026-12242 Code Injection in wordpress (CVE-2026-12242)
code injection in wordpress (CVE-2026-12242). Successful exploitation can lead to full system takeover.
CVE-2026-7761 Vulnerability in wordpress (CVE-2026-7761)
vulnerability in wordpress (CVE-2026-7761). Successful exploitation can lead to full system takeover.
CVE-2026-9643 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9643)
cross-site scripting in wordpress (CVE-2026-9643). Risk of unauthorized operations or information disclosure. Exploitable via ``wp_wpms_links.link_url``.
CVE-2026-9709 Vulnerability in wordpress (CVE-2026-9709)
vulnerability in wordpress (CVE-2026-9709). Confidential information can be exposed externally. Exploitable via ``cornerstone``.
CVE-2026-9710 Vulnerability in wordpress (CVE-2026-9710)
vulnerability in wordpress (CVE-2026-9710). Confidential information can be exposed externally. Exploitable via ``cornerstone``.
CVE-2026-9721 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-9721)
vulnerability in wordpress (CVE-2026-9721). Risk of unauthorized operations or information disclosure.
CVE-2026-9724 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-9724)
vulnerability in wordpress (CVE-2026-9724). Risk of unauthorized operations or information disclosure.
CVE-2026-9175 Vulnerability in wordpress (CVE-2026-9175)
vulnerability in wordpress (CVE-2026-9175). Risk of unauthorized operations or information disclosure.
CVE-2026-9178 Vulnerability in wordpress (CVE-2026-9178)
vulnerability in wordpress (CVE-2026-9178). Confidential information can be exposed externally.
CVE-2026-9179 SQL Injection in wordpress (CVE-2026-9179)
SQL injection in wordpress (CVE-2026-9179). Confidential information can be exposed externally.
CVE-2026-9183 Information Disclosure in wordpress (CVE-2026-9183)
vulnerability in wordpress (CVE-2026-9183). Risk of unauthorized operations or information disclosure.
CVE-2026-9184 Vulnerability in wordpress (CVE-2026-9184)
vulnerability in wordpress (CVE-2026-9184). Risk of unauthorized operations or information disclosure.
CVE-2026-9612 Information Disclosure in wordpress (CVE-2026-9612)
vulnerability in wordpress (CVE-2026-9612). Risk of unauthorized operations or information disclosure.
CVE-2026-9616 Vulnerability in wordpress (CVE-2026-9616)
vulnerability in wordpress (CVE-2026-9616). Risk of unauthorized operations or information disclosure.
CVE-2026-9619 Vulnerability in wordpress (CVE-2026-9619)
vulnerability in wordpress (CVE-2026-9619). Risk of unauthorized operations or information disclosure.
CVE-2026-9620 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9620)
cross-site scripting in wordpress (CVE-2026-9620). Risk of unauthorized operations or information disclosure.
CVE-2026-9172 Vulnerability in wordpress (CVE-2026-9172)
vulnerability in wordpress (CVE-2026-9172). Risk of unauthorized operations or information disclosure.
CVE-2026-8896 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8896)
cross-site scripting in wordpress (CVE-2026-8896). Risk of unauthorized operations or information disclosure.
CVE-2026-8865 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8865)
cross-site scripting in wordpress (CVE-2026-8865). Risk of unauthorized operations or information disclosure.
CVE-2026-8705 SQL Injection in wordpress (CVE-2026-8705)
SQL injection in wordpress (CVE-2026-8705). Confidential information can be exposed externally. Exploitable via ``clearsale_total_push``.
CVE-2026-8690 Vulnerability in wordpress (CVE-2026-8690)
vulnerability in wordpress (CVE-2026-8690). Risk of unauthorized operations or information disclosure.
CVE-2026-8688 Vulnerability in wordpress (CVE-2026-8688)
vulnerability in wordpress (CVE-2026-8688). Risk of unauthorized operations or information disclosure.
CVE-2026-8628 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8628)
cross-site scripting in wordpress (CVE-2026-8628). Risk of unauthorized operations or information disclosure.
CVE-2026-8905 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8905)
vulnerability in wordpress (CVE-2026-8905). Risk of unauthorized operations or information disclosure.
CVE-2026-8622 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8622)
cross-site scripting in wordpress (CVE-2026-8622). Risk of unauthorized operations or information disclosure.
CVE-2026-8617 Vulnerability in wordpress (CVE-2026-8617)
vulnerability in wordpress (CVE-2026-8617). Risk of unauthorized operations or information disclosure.
CVE-2026-8614 Vulnerability in wordpress (CVE-2026-8614)
vulnerability in wordpress (CVE-2026-8614). Risk of unauthorized operations or information disclosure.
CVE-2026-7617 Vulnerability in wordpress (CVE-2026-7617)
vulnerability in wordpress (CVE-2026-7617). Risk of unauthorized operations or information disclosure.
CVE-2026-6292 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6292)
vulnerability in wordpress (CVE-2026-6292). Risk of unauthorized operations or information disclosure.
CVE-2026-4297 Vulnerability in wordpress (CVE-2026-4297)
vulnerability in wordpress (CVE-2026-4297). Successful exploitation can lead to full system takeover.
CVE-2026-12100 SSRF (Server-Side Request Forgery) in wordpress (CVE-2026-12100)
SSRF in wordpress (CVE-2026-12100). Risk of unauthorized operations or information disclosure.
CVE-2026-10753 Vulnerability in wordpress (CVE-2026-10753)
vulnerability in wordpress (CVE-2026-10753). Risk of unauthorized operations or information disclosure.
CVE-2026-11370 SSRF (Server-Side Request Forgery) in wordpress (CVE-2026-11370)
SSRF in wordpress (CVE-2026-11370). Risk of unauthorized operations or information disclosure.
CVE-2026-11997 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-11997)
vulnerability in wordpress (CVE-2026-11997). Risk of unauthorized operations or information disclosure.
CVE-2026-12095 SSRF (Server-Side Request Forgery) in wordpress (CVE-2026-12095)
SSRF in wordpress (CVE-2026-12095). Risk of unauthorized operations or information disclosure.
CVE-2026-12416 Vulnerability in wordpress (CVE-2026-12416)
vulnerability in wordpress (CVE-2026-12416). Successful exploitation can lead to full system takeover. Exploitable via ``reset_activation_code``.
CVE-2026-12417 Vulnerability in wordpress (CVE-2026-12417)
vulnerability in wordpress (CVE-2026-12417). Successful exploitation can lead to full system takeover. Exploitable via ``wp_ajax_nopriv_pravel_change_password``.
CVE-2026-12094 Vulnerability in wordpress (CVE-2026-12094)
vulnerability in wordpress (CVE-2026-12094). Risk of unauthorized operations or information disclosure. Exploitable via ``wp_ajax_cf7cdb_delete``.
CVE-2026-10531 Vulnerability in wordpress (CVE-2026-10531)
vulnerability in wordpress (CVE-2026-10531). Risk of unauthorized operations or information disclosure.
CVE-2026-10091 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10091)
cross-site scripting in wordpress (CVE-2026-10091). Risk of unauthorized operations or information disclosure.
CVE-2026-10092 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10092)
cross-site scripting in wordpress (CVE-2026-10092). Risk of unauthorized operations or information disclosure.
CVE-2026-10749 Vulnerability in wordpress (CVE-2026-10749)
vulnerability in wordpress (CVE-2026-10749). Successful exploitation can lead to full system takeover.
CVE-2026-10552 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-10552)
vulnerability in wordpress (CVE-2026-10552). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →