Filter and search through 392,104 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-24602 | Missing Authorization vulnerability in Raptive Raptive Ads adthrive-ads allows Exploiting Incorrectly Configured Access Control Security Levels.This i... | 5.3 | 188 | Neutral | No |
| Yes |
| CVE-2026-24601 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PenciDesign Penci Pay Writer penci-pay-writer al... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24600 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PenciDesign Penci Review penci-review allows Sto... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24599 | Authorization Bypass Through User-Controlled Key vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite allows Exploiting Incorrect... | 5.3 | 145 | Neutral | No | Yes |
| CVE-2026-24598 | Missing Authorization vulnerability in bestwebsoft Multilanguage by BestWebSoft multilanguage allows Exploiting Incorrectly Configured Access Control ... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24596 | Cross-Site Request Forgery (CSRF) vulnerability in marynixie Related Posts Thumbnails Plugin for WordPress related-posts-thumbnails allows Cross Site ... | 4.7 | 158 | Neutral | No | Yes |
| CVE-2026-24595 | Missing Authorization vulnerability in zohocrm Zoho CRM Lead Magnet zoho-crm-forms allows Exploiting Incorrectly Configured Access Control Security Le... | 5.4 | 185 | Neutral | No | Yes |
| CVE-2026-24594 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in livemesh Livemesh Addons for WPBakery Page Build... | 4.8 | 202 | Neutral | No | Yes |
| CVE-2026-24593 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Strategy11 Team AWP Classifieds another-wordpress-classifi... | 5.3 | 124 | Neutral | No | Yes |
| CVE-2026-24591 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in yasir129 Turn Yoast SEO FAQ Block to Accordion f... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24589 | Insertion of Sensitive Information Into Sent Data vulnerability in Cargus eCommerce Cargus cargus allows Retrieve Embedded Sensitive Data.This issue a... | 5.3 | 124 | Neutral | No | Yes |
| CVE-2026-24588 | Missing Authorization vulnerability in topdevs Smart Product Viewer smart-product-viewer allows Exploiting Incorrectly Configured Access Control Secur... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24587 | Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Acces... | 5.4 | 185 | Neutral | No | Yes |
| CVE-2026-24585 | Missing Authorization vulnerability in Hyyan Abo Fakher Hyyan WooCommerce Polylang Integration woo-poly-integration allows Exploiting Incorrectly Conf... | 6.5 | 273 | Neutral | No | Yes |
| CVE-2026-24584 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS BunnyNet Integration tutor-lms... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24583 | Missing Authorization vulnerability in sumup SumUp Payment Gateway For WooCommerce sumup-payment-gateway-for-woocommerce allows Exploiting Incorrectly... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24581 | Missing Authorization vulnerability in WP Swings Points and Rewards for WooCommerce points-and-rewards-for-woocommerce allows Exploiting Incorrectly C... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24580 | Missing Authorization vulnerability in Ecwid by Lightspeed Ecommerce Shopping Cart Ecwid Shopping Cart ecwid-shopping-cart allows Exploiting Incorrect... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24579 | Missing Authorization vulnerability in WP Messiah Ai Image Alt Text Generator for WP ai-image-alt-text-generator-for-wp allows Exploiting Incorrectly ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-24578 | Missing Authorization vulnerability in Jahid Hasan Admin login URL Change admin-login-url-change allows Exploiting Incorrectly Configured Access Contr... | 0.0 | 0 | Neutral | No | Yes |