Filter and search through 392,208 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-24607 | Missing Authorization vulnerability in wptravelengine Travel Monster travel-monster allows Exploiting Incorrectly Configured Access Control Security L... | 5.3 | 188 | Neutral | No |
| Yes |
| CVE-2026-24606 | Missing Authorization vulnerability in Web Impian Bayarcash WooCommerce bayarcash-wc allows Exploiting Incorrectly Configured Access Control Security ... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24605 | Missing Authorization vulnerability in pencilwp X Addons for Elementor x-addons-elementor allows Exploiting Incorrectly Configured Access Control Secu... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24604 | Missing Authorization vulnerability in themebeez Simple GDPR Cookie Compliance simple-gdpr-cookie-compliance allows Exploiting Incorrectly Configured ... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24603 | Missing Authorization vulnerability in themebeez Universal Google Adsense and Ads manager universal-google-adsense-and-ads-manager allows Exploiting I... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24602 | Missing Authorization vulnerability in Raptive Raptive Ads adthrive-ads allows Exploiting Incorrectly Configured Access Control Security Levels.This i... | 5.3 | 188 | Neutral | No | Yes |
| CVE-2026-24601 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PenciDesign Penci Pay Writer penci-pay-writer al... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24600 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PenciDesign Penci Review penci-review allows Sto... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24599 | Authorization Bypass Through User-Controlled Key vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite allows Exploiting Incorrect... | 5.3 | 145 | Neutral | No | Yes |
| CVE-2026-24598 | Missing Authorization vulnerability in bestwebsoft Multilanguage by BestWebSoft multilanguage allows Exploiting Incorrectly Configured Access Control ... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24596 | Cross-Site Request Forgery (CSRF) vulnerability in marynixie Related Posts Thumbnails Plugin for WordPress related-posts-thumbnails allows Cross Site ... | 4.7 | 158 | Neutral | No | Yes |
| CVE-2026-24595 | Missing Authorization vulnerability in zohocrm Zoho CRM Lead Magnet zoho-crm-forms allows Exploiting Incorrectly Configured Access Control Security Le... | 5.4 | 185 | Neutral | No | Yes |
| CVE-2026-24594 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in livemesh Livemesh Addons for WPBakery Page Build... | 4.8 | 202 | Neutral | No | Yes |
| CVE-2026-24593 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Strategy11 Team AWP Classifieds another-wordpress-classifi... | 5.3 | 124 | Neutral | No | Yes |
| CVE-2026-24591 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in yasir129 Turn Yoast SEO FAQ Block to Accordion f... | 5.4 | 223 | Neutral | No | Yes |
| CVE-2026-24589 | Insertion of Sensitive Information Into Sent Data vulnerability in Cargus eCommerce Cargus cargus allows Retrieve Embedded Sensitive Data.This issue a... | 5.3 | 124 | Neutral | No | Yes |
| CVE-2026-24588 | Missing Authorization vulnerability in topdevs Smart Product Viewer smart-product-viewer allows Exploiting Incorrectly Configured Access Control Secur... | 4.3 | 163 | Neutral | No | Yes |
| CVE-2026-24587 | Missing Authorization vulnerability in kutsy AJAX Hits Counter + Popular Posts Widget ajax-hits-counter allows Exploiting Incorrectly Configured Acces... | 5.4 | 185 | Neutral | No | Yes |
| CVE-2026-24585 | Missing Authorization vulnerability in Hyyan Abo Fakher Hyyan WooCommerce Polylang Integration woo-poly-integration allows Exploiting Incorrectly Conf... | 6.5 | 273 | Neutral | No | Yes |
| CVE-2026-24584 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeum Tutor LMS BunnyNet Integration tutor-lms... | 0.0 | 0 | Neutral | No | Yes |