Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-6937 |
|
Vulnerability in wordpress (CVE-2026-6937)
vulnerability in wordpress (CVE-2026-6937). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7048 |
|
SQL Injection in wordpress (CVE-2026-7048)
SQL injection in wordpress (CVE-2026-7048). Confidential information can be exposed externally.
|
| CVE-2026-8689 |
|
Vulnerability in c (CVE-2026-8689)
vulnerability in c (CVE-2026-8689). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6226 |
|
Privilege Escalation in wordpress (CVE-2026-6226)
vulnerability in wordpress (CVE-2026-6226). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4334 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-4334)
cross-site scripting in wordpress (CVE-2026-4334). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9618 |
|
Cross-Site Request Forgery (CSRF) in csharp (CVE-2026-9618)
vulnerability in csharp (CVE-2026-9618). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9227 |
|
Unrestricted File Upload in wordpress (CVE-2026-9227)
vulnerability in wordpress (CVE-2026-9227). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8682 |
|
Vulnerability in wordpress (CVE-2026-8682)
vulnerability in wordpress (CVE-2026-8682). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7862 |
|
Vulnerability in wordpress (CVE-2026-7862)
vulnerability in wordpress (CVE-2026-7862). Data can be tampered with by attackers.
|
| CVE-2026-7797 |
|
SQL Injection in wordpress (CVE-2026-7797)
SQL injection in wordpress (CVE-2026-7797). Confidential information can be exposed externally.
|
| CVE-2026-7660 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7660)
cross-site scripting in wordpress (CVE-2026-7660). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7651 |
|
Vulnerability in wordpress (CVE-2026-7651)
vulnerability in wordpress (CVE-2026-7651). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7634 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7634)
cross-site scripting in wordpress (CVE-2026-7634). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7621 |
|
Vulnerability in wordpress (CVE-2026-7621)
vulnerability in wordpress (CVE-2026-7621). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7552 |
|
Vulnerability in wordpress (CVE-2026-7552)
vulnerability in wordpress (CVE-2026-7552). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7052 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7052)
cross-site scripting in wordpress (CVE-2026-7052). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6455 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6455)
vulnerability in wordpress (CVE-2026-6455). Data can be tampered with by attackers.
|
| CVE-2026-6427 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-6427)
cross-site scripting in wordpress (CVE-2026-6427). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9644 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9644)
cross-site scripting in wordpress (CVE-2026-9644). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7533 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-7533)
vulnerability in wordpress (CVE-2026-7533). Risk of unauthorized operations or information disclosure. Exploitable via ``admin_init``.
|
| CVE-2026-9009 |
|
Unrestricted File Upload in wordpress (CVE-2026-9009)
vulnerability in wordpress (CVE-2026-9009). Successful exploitation can lead to full system takeover.
|
| CVE-2026-3173 |
|
Vulnerability in wordpress (CVE-2026-3173)
vulnerability in wordpress (CVE-2026-3173). Confidential information can be exposed externally.
|
| CVE-2026-9241 |
|
Vulnerability in wordpress (CVE-2026-9241)
vulnerability in wordpress (CVE-2026-9241). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9228 |
|
Vulnerability in wordpress (CVE-2026-9228)
vulnerability in wordpress (CVE-2026-9228). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7802 |
|
Vulnerability in wordpress (CVE-2026-7802)
vulnerability in wordpress (CVE-2026-7802). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5737 |
|
SSRF (Server-Side Request Forgery) in wordpress (CVE-2026-5737)
SSRF in wordpress (CVE-2026-5737). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2374 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2374)
cross-site scripting in wordpress (CVE-2026-2374). Risk of unauthorized operations or information disclosure. Exploitable via ``login_nocaptcha_error``.
|
| CVE-2026-4888 |
|
Vulnerability in wordpress (CVE-2026-4888)
vulnerability in wordpress (CVE-2026-4888). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42197 |
|
Cross-Site Scripting (XSS) in django (CVE-2026-42197)
cross-site scripting in django (CVE-2026-42197). Confidential information can be exposed externally. Exploitable via ``ParticipationAdmin``.
|
| CVE-2026-48544 |
|
Path Traversal in taipy (CVE-2026-48544)
path traversal in taipy (CVE-2026-48544). Confidential information can be exposed externally.
|
| CVE-2026-42762 |
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
|
| CVE-2026-42760 |
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and...
Authentication Bypass Using an Alternate Path or Channel vulnerability in revmakx Backup and...
|
| CVE-2026-42753 |
|
Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows...
Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows...
|
| CVE-2026-42746 |
|
Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for...
Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for...
|
| CVE-2026-42745 |
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online...
Authentication Bypass Using an Alternate Path or Channel vulnerability in ZAYTECH Smart Online...
|
| CVE-2026-42737 |
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
|
| CVE-2026-42736 |
|
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
|
| CVE-2026-42735 |
|
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare...
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic Design KiviCare...
|
| CVE-2026-42730 |
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
|
| CVE-2026-42726 |
|
Vulnerability in wordpress (CVE-2026-42726)
vulnerability in wordpress (CVE-2026-42726). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3349 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3349)
cross-site scripting in wordpress (CVE-2026-3349). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3348 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3348)
cross-site scripting in wordpress (CVE-2026-3348). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2288 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2288)
cross-site scripting in wordpress (CVE-2026-2288). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2280 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2280)
cross-site scripting in wordpress (CVE-2026-2280). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-0898 |
|
Vulnerability in wordpress (CVE-2025-0898)
vulnerability in wordpress (CVE-2025-0898). Confidential information can be exposed externally.
|
| CVE-2026-7618 |
|
SQL Injection in wordpress (CVE-2026-7618)
SQL injection in wordpress (CVE-2026-7618). Confidential information can be exposed externally.
|
| CVE-2026-8906 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8906)
vulnerability in wordpress (CVE-2026-8906). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8832 |
|
Code Injection in wordpress (CVE-2026-8832)
code injection in wordpress (CVE-2026-8832). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6169 |
|
Code Injection in wordpress (CVE-2026-6169)
code injection in wordpress (CVE-2026-6169). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8042 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8042)
cross-site scripting in wordpress (CVE-2026-8042). Risk of unauthorized operations or information disclosure.
|