0.0

CVE-2026-39712 - WordPress tagDiv Composer plugin <= 5.4.3 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in tagDiv tagDiv Composer td-composer allows Code Injection.This issue affects tagDiv Composer: from n/a through <= 5.4.3.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39711 - WordPress RT-Theme 18 | Extensions plugin <= 2.5 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in stmcan RT-Theme 18 | Extensions rt18-extensions allows Retrieve Embedded Sensitive Data.This issue affects RT-Theme 18 | Extensions: from n/a through <= 2.5.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39710 - WordPress RT-Theme 18 | Extensions plugin <= 2.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in stmcan RT-Theme 18 | Extensions rt18-extensions allows Cross Site Request Forgery.This issue affects RT-Theme 18 | Extensions: from n/a through <= 2.5.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39709 - WordPress The Tribal plugin <= 1.3.4 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in thetechtribe The Tribal the-tech-tribe allows Retrieve Embedded Sensitive Data.This issue affects The Tribal: from n/a through <= 1.3.4.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39708 - WordPress UiCore Elements plugin <= 1.3.14 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in uicore UiCore Elements uicore-elements allows Stored XSS.This issue affects UiCore Elements: from n/a through <= 1.3.14.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39707 - WordPress Accept PayPal Payments using Contact Form 7 plugin <= 4.0.4 - Broken Access Control vulne…

Missing Authorization vulnerability in ZealousWeb Accept PayPal Payments using Contact Form 7 contact-form-7-paypal-extension allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accept PayPal Payments using Contact Form 7: from n/a through <= 4.0.4.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39706 - WordPress Make My Trivia plugin <= 1.1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Netro Systems Make My Trivia trivialy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Make My Trivia: from n/a through <= 1.1.0.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39705 - WordPress MIPL WC Multisite Sync plugin <= 1.4.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Mulika Team MIPL WC Multisite Sync mipl-wc-multisite-sync allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MIPL WC Multisite Sync: from n/a through <= 1.4.4.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39704 - WordPress Precious Metals Automated Product Pricing – Pro plugin <= 4.0.5 - Broken Access Control v…

Missing Authorization vulnerability in nfusionsolutions Precious Metals Automated Product Pricing &#8211; Pro precious-metals-automated-product-pricing-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Precious Metals Automated Product Pricing &#8211; Pr…

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.

0.0

CVE-2026-39703 - WordPress WPBITS Addons For Elementor Page Builder plugin <= 1.8.1 - Cross Site Scripting (XSS) vul…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpbits WPBITS Addons For Elementor Page Builder wpbits-addons-for-elementor allows Stored XSS.This issue affects WPBITS Addons For Elementor Page Builder: from n/a through <= 1.8.1.

πŸ“… Published: April 8, 2026, 8:30 a.m. πŸ”„ Last Modified: April 8, 2026, 8:30 a.m.
Total resulsts: 343040
Page 2 of 34,304
Β« previous page Β» next page
Filters