Filter and search through 392,208 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-24631 | Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Rosebud rosebud allows Exploiting Incorrectly Configured Access Contro... | 5.4 | 142 | Neutral | No |
| Yes |
| CVE-2026-24630 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Design Stylish Cost Calculator stylish-cost-calc... | 6.5 | 311 | Neutral | No | Yes |
| CVE-2026-24629 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ability, Inc Web Accessibility with Max Access a... | 5.9 | 245 | Neutral | No | Yes |
| CVE-2026-24627 | Missing Authorization vulnerability in Trusona Trusona for WordPress trusona allows Exploiting Incorrectly Configured Access Control Security Levels.T... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24626 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LogicHunt Logo Slider logo-slider-wp allows Stor... | 5.9 | 245 | Neutral | No | Yes |
| CVE-2026-24625 | Missing Authorization vulnerability in Imaginate Solutions File Uploads Addon for WooCommerce woo-addon-uploads allows Exploiting Incorrectly Configur... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24624 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in saeros1984 Neoforum neoforum allows Blind SQL In... | 7.2 | 442 | Neutral | No | Yes |
| CVE-2026-24623 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in saeros1984 Neoforum neoforum allows Reflected XS... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24622 | Missing Authorization vulnerability in Sergiy Dzysyak Suggestion Toolkit suggestion-toolkit allows Exploiting Incorrectly Configured Access Control Se... | 5.4 | 185 | Neutral | No | Yes |
| CVE-2026-24621 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vladimir Statsenko Terms descriptions terms-desc... | 4.8 | 202 | Neutral | No | Yes |
| CVE-2026-24620 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PluginOps Landing Page Builder page-builder-add ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24619 | Missing Authorization vulnerability in PopCash PopCash.Net Code Integration Tool popcashnet-code-integration-tool allows Exploiting Incorrectly Config... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24617 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Daniel Iser Easy Modal easy-modal allows Stored ... | 6.5 | 311 | Neutral | No | Yes |
| CVE-2026-24616 | Missing Authorization vulnerability in Damian WP Popups wp-popups-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This is... | 6.5 | 273 | Neutral | No | Yes |
| CVE-2026-24615 | Missing Authorization vulnerability in themebeez Cream Magazine cream-magazine allows Exploiting Incorrectly Configured Access Control Security Levels... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24614 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Devsbrain Flex QR Code Generator flex-qr-code-ge... | 5.9 | 245 | Neutral | No | Yes |
| CVE-2026-24613 | Missing Authorization vulnerability in Ecwid by Lightspeed Ecommerce Shopping Cart Ecwid Shopping Cart ecwid-shopping-cart allows Exploiting Incorrect... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24612 | Missing Authorization vulnerability in themebeez Orchid Store orchid-store allows Exploiting Incorrectly Configured Access Control Security Levels.Thi... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24609 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Laurent laurent... | 7.5 | 379 | Neutral | No | Yes |
| CVE-2026-24608 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elated-Themes Laurent Core la... | 7.5 | 379 | Neutral | No | Yes |