Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-45845 |
|
Vulnerability in c (CVE-2026-45845)
vulnerability in c (CVE-2026-45845). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42762 |
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
|
| CVE-2026-42760 |
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and...
Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and...
|
| CVE-2026-42746 |
|
Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for...
Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for...
|
| CVE-2026-42753 |
|
Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows...
Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows...
|
| CVE-2026-42735 |
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare...
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare...
|
| CVE-2026-42737 |
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
|
| CVE-2026-42745 |
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online...
Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online...
|
| CVE-2026-42736 |
|
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
|
| CVE-2026-42730 |
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
|
| CVE-2026-3348 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3348)
cross-site scripting in wordpress (CVE-2026-3348). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3349 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3349)
cross-site scripting in wordpress (CVE-2026-3349). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42726 |
|
Vulnerability in wordpress (CVE-2026-42726)
vulnerability in wordpress (CVE-2026-42726). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3012 |
|
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate...
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate...
|
| CVE-2026-2280 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2280)
cross-site scripting in wordpress (CVE-2026-2280). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2288 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2288)
cross-site scripting in wordpress (CVE-2026-2288). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-0898 |
|
Vulnerability in wordpress (CVE-2025-0898)
vulnerability in wordpress (CVE-2025-0898). Confidential information can be exposed externally.
|
| CVE-2026-40829 |
|
SQL Injection in sqli (CVE-2026-40829)
SQL injection in sqli (CVE-2026-40829). Confidential information can be exposed externally.
|
| CVE-2026-40830 |
|
SQL Injection in sqli (CVE-2026-40830)
SQL injection in sqli (CVE-2026-40830). Confidential information can be exposed externally.
|
| CVE-2026-40834 |
|
SQL Injection in sqli (CVE-2026-40834)
SQL injection in sqli (CVE-2026-40834). Confidential information can be exposed externally.
|
| CVE-2026-40833 |
|
SQL Injection in sqli (CVE-2026-40833)
SQL injection in sqli (CVE-2026-40833). Confidential information can be exposed externally.
|
| CVE-2026-40816 |
|
SQL Injection in sqli (CVE-2026-40816)
SQL injection in sqli (CVE-2026-40816). Confidential information can be exposed externally.
|
| CVE-2026-40814 |
|
SQL Injection in sqli (CVE-2026-40814)
SQL injection in sqli (CVE-2026-40814). Confidential information can be exposed externally.
|
| CVE-2026-8832 |
|
Code Injection in wordpress (CVE-2026-8832)
code injection in wordpress (CVE-2026-8832). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6169 |
|
Code Injection in wordpress (CVE-2026-6169)
code injection in wordpress (CVE-2026-6169). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7618 |
|
SQL Injection in wordpress (CVE-2026-7618)
SQL injection in wordpress (CVE-2026-7618). Confidential information can be exposed externally.
|
| CVE-2026-8042 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8042)
cross-site scripting in wordpress (CVE-2026-8042). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8143 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8143)
cross-site scripting in wordpress (CVE-2026-8143). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8906 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8906)
vulnerability in wordpress (CVE-2026-8906). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8942 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8942)
vulnerability in wordpress (CVE-2026-8942). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3001 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3001)
cross-site scripting in wordpress (CVE-2026-3001). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3279 |
|
Vulnerability in wordpress (CVE-2026-3279)
vulnerability in wordpress (CVE-2026-3279). Data can be tampered with by attackers.
|
| CVE-2026-2030 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2030)
cross-site scripting in wordpress (CVE-2026-2030). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3895 |
|
Vulnerability in wordpress (CVE-2026-3895)
vulnerability in wordpress (CVE-2026-3895). Risk of unauthorized operations or information disclosure. Exploitable via ``lvca_admin_ajax``.
|
| CVE-2026-3897 |
|
Vulnerability in wordpress (CVE-2026-3897)
vulnerability in wordpress (CVE-2026-3897). Risk of unauthorized operations or information disclosure. Exploitable via ``labb_admin_ajax``.
|
| CVE-2026-3896 |
|
Vulnerability in wordpress (CVE-2026-3896)
vulnerability in wordpress (CVE-2026-3896). Risk of unauthorized operations or information disclosure. Exploitable via ``lsow_admin_ajax``.
|
| CVE-2026-3375 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3375)
cross-site scripting in wordpress (CVE-2026-3375). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9200 |
|
Vulnerability in wordpress (CVE-2026-9200)
vulnerability in wordpress (CVE-2026-9200). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9014 |
|
Vulnerability in wordpress (CVE-2026-9014)
vulnerability in wordpress (CVE-2026-9014). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8939 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8939)
vulnerability in wordpress (CVE-2026-8939). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8899 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8899)
cross-site scripting in wordpress (CVE-2026-8899). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8903 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8903)
vulnerability in wordpress (CVE-2026-8903). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8911 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8911)
vulnerability in wordpress (CVE-2026-8911). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8938 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8938)
vulnerability in wordpress (CVE-2026-8938). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8941 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8941)
vulnerability in wordpress (CVE-2026-8941). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8943 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8943)
vulnerability in wordpress (CVE-2026-8943). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8994 |
|
Authentication Bypass in wordpress (CVE-2026-8994)
authentication bypass in wordpress (CVE-2026-8994). Successful exploitation can lead to full system takeover. Exploitable via ``wp_ajax_nopriv``.
|
| CVE-2026-8875 |
|
Cross-Site Scripting (XSS) in c (CVE-2026-8875)
cross-site scripting in c (CVE-2026-8875). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8877 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8877)
cross-site scripting in wordpress (CVE-2026-8877). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8884 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8884)
cross-site scripting in wordpress (CVE-2026-8884). Risk of unauthorized operations or information disclosure.
|