Filter and search through 392,598 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-24559 | Insertion of Sensitive Information Into Sent Data vulnerability in CRM Perks Integration for Contact Form 7 HubSpot cf7-hubspot allows Retrieve Embedd... | 5.4 | 121 | Neutral | No |
| Yes |
| CVE-2026-24558 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in antoniobg ABG Rich Pins abg-rich-pins allows Sto... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24557 | Insertion of Sensitive Information Into Sent Data vulnerability in WEN Solutions Contact Form 7 GetResponse Extension contact-form-7-getresponse-exten... | 5.3 | 124 | Neutral | No | Yes |
| CVE-2026-24556 | Missing Authorization vulnerability in wpdive ElementCamp element-camp allows Exploiting Incorrectly Configured Access Control Security Levels.This is... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24555 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in artplacer ArtPlacer Widget artplacer-widget allo... | 6.1 | 272 | Neutral | No | Yes |
| CVE-2026-24553 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Dotstore Fraud Prevention For Woocommerce woo-blocker-lite... | 4.3 | 99 | Neutral | No | Yes |
| CVE-2026-24551 | Missing Authorization vulnerability in monetagwp Monetag Official Plugin monetag-official allows Exploiting Incorrectly Configured Access Control Secu... | 5.4 | 185 | Neutral | No | Yes |
| CVE-2026-24550 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kaira Blockons blockons allows Stored XSS.This i... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24549 | Cross-Site Request Forgery (CSRF) vulnerability in Paolo GeoDirectory geodirectory allows Cross Site Request Forgery.This issue affects GeoDirectory: ... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24548 | Server-Side Request Forgery (SSRF) vulnerability in Prince Radio Player radio-player allows Server Side Request Forgery.This issue affects Radio Playe... | 5.3 | 253 | Neutral | No | Yes |
| CVE-2026-24544 | Missing Authorization vulnerability in Harmonic Design HD Quiz hd-quiz allows Exploiting Incorrectly Configured Access Control Security Levels.This is... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24543 | Missing Authorization vulnerability in Horea Radu Materialis Companion materialis-companion allows Exploiting Incorrectly Configured Access Control Se... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24542 | Cross-Site Request Forgery (CSRF) vulnerability in John James Jacoby WP Term Order wp-term-order allows Cross Site Request Forgery.This issue affects ... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24541 | Missing Authorization vulnerability in mkscripts Download After Email download-after-email allows Exploiting Incorrectly Configured Access Control Sec... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24540 | Missing Authorization vulnerability in Prince Integrate Google Drive integrate-google-drive allows Exploiting Incorrectly Configured Access Control Se... | 5.4 | 185 | Neutral | No | Yes |
| CVE-2026-24539 | Missing Authorization vulnerability in ABCdatos Protección de datos – RGPD proteccion-datos-rgpd allows Exploiting Incorrectly Configured Access... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24538 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in omnipressteam Omnipress omnip... | 7.6 | 397 | Neutral | No | Yes |
| CVE-2026-24536 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in webpushr Webpushr webpushr-web-push-notifications allows R... | 7.5 | 386 | Neutral | No | Yes |
| CVE-2026-24535 | Missing Authorization vulnerability in webdevstudios Automatic Featured Images from Videos automatic-featured-images-from-videos allows Exploiting Inc... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24534 | Missing Authorization vulnerability in uPress Booter booter-bots-crawlers-manager allows Exploiting Incorrectly Configured Access Control Security Lev... | 8.8 | 609 | Neutral | No | Yes |