Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-57366 |
|
Unauthenticated Cross Site Scripting (XSS) in WPAdverts <= 2.3.1 versions.
Unauthenticated Cross Site Scripting (XSS) in WPAdverts <= 2.3.1 versions.
|
| CVE-2026-57351 |
|
Unauthenticated Cross Site Scripting (XSS) in HandL UTM Grabber <= 2.9.2 versions.
Unauthenticated Cross Site Scripting (XSS) in HandL UTM Grabber <= 2.9.2 versions.
|
| CVE-2026-57357 |
|
Unauthenticated Cross Site Scripting (XSS) in Search Atlas SEO <= 2.6.6 versions.
Unauthenticated Cross Site Scripting (XSS) in Search Atlas SEO <= 2.6.6 versions.
|
| CVE-2026-57673 |
|
Unauthenticated Cross Site Scripting (XSS) in Optimole <= 4.2.7 versions.
Unauthenticated Cross Site Scripting (XSS) in Optimole <= 4.2.7 versions.
|
| CVE-2026-57674 |
|
Unauthenticated Cross Site Scripting (XSS) in Timetics <= 1.0.58 versions.
Unauthenticated Cross Site Scripting (XSS) in Timetics <= 1.0.58 versions.
|
| CVE-2026-57625 |
|
Cross-Site Scripting (XSS) in CVE-2026-57625 (CVE-2026-57625)
cross-site scripting in CVE-2026-57625 (CVE-2026-57625). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27402 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-27402)
cross-site scripting in wordpress (CVE-2026-27402). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27426 |
|
Cross-Site Scripting (XSS) in CVE-2026-27426 (CVE-2026-27426)
cross-site scripting in CVE-2026-27426 (CVE-2026-27426). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27404 |
|
Unauthenticated Cross Site Scripting (XSS) in LMS <= 9.7 versions.
Unauthenticated Cross Site Scripting (XSS) in LMS <= 9.7 versions.
|
| CVE-2026-57345 |
|
Unauthenticated Cross Site Scripting (XSS) in Internal Links Manager <= 3.0.3 versions.
Unauthenticated Cross Site Scripting (XSS) in Internal Links Manager <= 3.0.3 versions.
|
| CVE-2026-27430 |
|
Unauthenticated Cross Site Scripting (XSS) in TheFox <= 3.9.76 versions.
Unauthenticated Cross Site Scripting (XSS) in TheFox <= 3.9.76 versions.
|
| CVE-2026-57343 |
|
Unauthenticated Cross Site Scripting (XSS) in Real Estate 7 <= 3.5.9 versions.
Unauthenticated Cross Site Scripting (XSS) in Real Estate 7 <= 3.5.9 versions.
|
| CVE-2026-27408 |
|
Unauthenticated Cross Site Scripting (XSS) in NativeChurch <= 4.8.8.2 versions.
Unauthenticated Cross Site Scripting (XSS) in NativeChurch <= 4.8.8.2 versions.
|
| CVE-2026-57342 |
|
Subscriber Cross Site Scripting (XSS) in ShortPixel Adaptive Images <= 3.11.3 versions.
Subscriber Cross Site Scripting (XSS) in ShortPixel Adaptive Images <= 3.11.3 versions.
|
| CVE-2026-57344 |
|
Unauthenticated Cross Site Scripting (XSS) in Classified Listing <= 5.4.2 versions.
Unauthenticated Cross Site Scripting (XSS) in Classified Listing <= 5.4.2 versions.
|
| CVE-2026-27425 |
|
Unauthenticated Cross Site Scripting (XSS) in Automotive Listings <= 18.6 versions.
Unauthenticated Cross Site Scripting (XSS) in Automotive Listings <= 18.6 versions.
|
| CVE-2026-14449 |
|
Cross-Site Scripting (XSS) in CVE-2026-14449 (CVE-2026-14449)
cross-site scripting in CVE-2026-14449 (CVE-2026-14449). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69152 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2025-69152)
cross-site scripting in wordpress (CVE-2025-69152). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69154 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2025-69154)
cross-site scripting in wordpress (CVE-2025-69154). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69156 |
|
Unauthenticated Cross Site Scripting (XSS) in Kids Zone - Children WordPress Theme <= 5.4 versions.
Unauthenticated Cross Site Scripting (XSS) in Kids Zone - Children WordPress Theme <= 5.4 versions.
|
| CVE-2025-69155 |
|
Unauthenticated Cross Site Scripting (XSS) in Fitness Zone WordPress Theme <= 5.7 versions.
Unauthenticated Cross Site Scripting (XSS) in Fitness Zone WordPress Theme <= 5.7 versions.
|
| CVE-2025-69153 |
|
Unauthenticated Cross Site Scripting (XSS) in Trendy Travel <= 6.7 versions.
Unauthenticated Cross Site Scripting (XSS) in Trendy Travel <= 6.7 versions.
|
| CVE-2026-13252 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-13252)
cross-site scripting in wordpress (CVE-2026-13252). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10104 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-10104)
cross-site scripting in wordpress (CVE-2026-10104). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13704 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-13704)
cross-site scripting in wordpress (CVE-2026-13704). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10089 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-10089)
cross-site scripting in wordpress (CVE-2026-10089). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-55790 |
|
Cross-Site Scripting (XSS) in craftcms/cms (CVE-2026-55790)
cross-site scripting in craftcms/cms (CVE-2026-55790). Risk of unauthorized operations or information disclosure. Exploitable via ``CraftSupportWidget.js``. Mitigation: upgrade to `4.17.16` or later.
|
| CVE-2026-55793 |
|
Cross-Site Scripting (XSS) in craftcms/cms (CVE-2026-55793)
cross-site scripting in craftcms/cms (CVE-2026-55793). Risk of unauthorized operations or information disclosure. Exploitable via ``saveEntries``. Mitigation: upgrade to `5.9.53` or later.
|
| CVE-2026-54263 |
|
Cross-Site Scripting (XSS) in django (CVE-2026-54263)
cross-site scripting in django (CVE-2026-54263). Confidential information can be exposed externally.
|
| CVE-2026-14358 |
|
Cross-Site Scripting (XSS) in CVE-2026-14358 (CVE-2026-14358)
cross-site scripting in CVE-2026-14358 (CVE-2026-14358). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58263 |
|
Cross-Site Scripting (XSS) in CVE-2026-58263 (CVE-2026-58263)
cross-site scripting in CVE-2026-58263 (CVE-2026-58263). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54720 |
|
Cross-Site Scripting (XSS) in CVE-2026-54720 (CVE-2026-54720)
cross-site scripting in CVE-2026-54720 (CVE-2026-54720). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57737 |
|
Cross-Site Scripting (XSS) in CVE-2026-57737 (CVE-2026-57737)
cross-site scripting in CVE-2026-57737 (CVE-2026-57737). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57722 |
|
Cross-Site Scripting (XSS) in CVE-2026-57722 (CVE-2026-57722)
cross-site scripting in CVE-2026-57722 (CVE-2026-57722). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34096 |
|
Cross-Site Scripting (XSS) in CVE-2026-34096 (CVE-2026-34096)
cross-site scripting in CVE-2026-34096 (CVE-2026-34096). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34097 |
|
Cross-Site Scripting (XSS) in CVE-2026-34097 (CVE-2026-34097)
cross-site scripting in CVE-2026-34097 (CVE-2026-34097). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34098 |
|
Cross-Site Scripting (XSS) in CVE-2026-34098 (CVE-2026-34098)
cross-site scripting in CVE-2026-34098 (CVE-2026-34098). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58030 |
|
Cross-Site Scripting (XSS) in CVE-2026-58030 (CVE-2026-58030)
cross-site scripting in CVE-2026-58030 (CVE-2026-58030). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58037 |
|
Cross-Site Scripting (XSS) in CVE-2026-58037 (CVE-2026-58037)
cross-site scripting in CVE-2026-58037 (CVE-2026-58037). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58038 |
|
Cross-Site Scripting (XSS) in CVE-2026-58038 (CVE-2026-58038)
cross-site scripting in CVE-2026-58038 (CVE-2026-58038). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58028 |
|
Cross-Site Scripting (XSS) in CVE-2026-58028 (CVE-2026-58028)
cross-site scripting in CVE-2026-58028 (CVE-2026-58028). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58032 |
|
Cross-Site Scripting (XSS) in CVE-2026-58032 (CVE-2026-58032)
cross-site scripting in CVE-2026-58032 (CVE-2026-58032). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58034 |
|
Cross-Site Scripting (XSS) in vue (CVE-2026-58034)
cross-site scripting in vue (CVE-2026-58034). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58035 |
|
Cross-Site Scripting (XSS) in vue (CVE-2026-58035)
cross-site scripting in vue (CVE-2026-58035). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5220 |
|
Cross-Site Scripting (XSS) in CVE-2026-5220 (CVE-2026-5220)
cross-site scripting in CVE-2026-5220 (CVE-2026-5220). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58031 |
|
Cross-Site Scripting (XSS) in CVE-2026-58031 (CVE-2026-58031)
cross-site scripting in CVE-2026-58031 (CVE-2026-58031). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6283 |
|
Cross-Site Scripting (XSS) in CVE-2026-6283 (CVE-2026-6283)
cross-site scripting in CVE-2026-6283 (CVE-2026-6283). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53907 |
|
Cross-Site Scripting (XSS) in mycomplianceoffice (CVE-2026-53907)
cross-site scripting in mycomplianceoffice (CVE-2026-53907). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12142 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-12142)
cross-site scripting in wordpress (CVE-2026-12142). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13323 |
|
Cross-Site Scripting (XSS) in eclipse (CVE-2026-13323)
cross-site scripting in eclipse (CVE-2026-13323). Risk of unauthorized operations or information disclosure.
|