8.8

CVSS3.1

CVE-2026-25445 - WordPress WishList Member X plugin <= 3.29.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Membership Software WishList Member X allows Object Injection.This issue affects WishList Member X: from n/a through 3.29.0.

πŸ“… Published: March 19, 2026, 8:37 a.m. πŸ”„ Last Modified: March 19, 2026, 8:37 a.m.

7.5

CVSS3.1

CVE-2026-25443 - WordPress Fraud Prevention For Woocommerce plugin <= 2.3.3 - Arbitrary Content Deletion vulnerabili…

Missing Authorization vulnerability in Dotstore Fraud Prevention For Woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fraud Prevention For Woocommerce: from n/a through 2.3.3.

πŸ“… Published: March 19, 2026, 8:36 a.m. πŸ”„ Last Modified: March 19, 2026, 8:36 a.m.

7.1

CVSS3.1

CVE-2026-25442 - WordPress Kentha theme <= 4.7.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QantumThemes Kentha allows Reflected XSS.This issue affects Kentha: from n/a through 4.7.2.

πŸ“… Published: March 19, 2026, 8:35 a.m. πŸ”„ Last Modified: March 19, 2026, 8:35 a.m.

7.1

CVSS3.1

CVE-2026-25438 - WordPress Gutenberg Blocks – Unlimited blocks For Gutenberg plugin <= 1.2.8 - Reflected Cross Site …

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeHunk Gutenberg Blocks allows Reflected XSS.This issue affects Gutenberg Blocks: from n/a through 1.2.8.

πŸ“… Published: March 19, 2026, 8:34 a.m. πŸ”„ Last Modified: March 19, 2026, 8:34 a.m.

7.1

CVSS3.1

CVE-2025-68836 - WordPress Table of Contents Creator plugin <= 1.6.4.1 - Reflected Cross Site Scripting (XSS) vulner…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Markbeljaars Table of Contents Creator allows Reflected XSS.This issue affects Table of Contents Creator: from n/a through 1.6.4.1.

πŸ“… Published: March 19, 2026, 8:33 a.m. πŸ”„ Last Modified: March 19, 2026, 8:33 a.m.

7.1

CVSS3.1

CVE-2025-67618 - WordPress Brookside theme <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ArtstudioWorks Brookside allows Reflected XSS.This issue affects Brookside: from n/a through 1.4.

πŸ“… Published: March 19, 2026, 8:31 a.m. πŸ”„ Last Modified: March 19, 2026, 8:31 a.m.

6.5

CVSS3.1

CVE-2025-62043 - WordPress WPCasa plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in WPSight WPCasa allows DOM-Based XSS.This issue affects WPCasa: from n/a through 1.4.1.

πŸ“… Published: March 19, 2026, 8:25 a.m. πŸ”„ Last Modified: March 19, 2026, 8:25 a.m.

9.8

CVSS3.1

CVE-2025-60237 - WordPress Finag theme <= 1.5.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Themeton Finag allows Object Injection.This issue affects Finag: from n/a through 1.5.0.

πŸ“… Published: March 19, 2026, 8:14 a.m. πŸ”„ Last Modified: March 19, 2026, 8:14 a.m.

9.8

CVSS3.1

CVE-2025-60233 - WordPress Zuut theme <= 1.4.2 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Themeton Zuut allows Object Injection.This issue affects Zuut: from n/a through 1.4.2.

πŸ“… Published: March 19, 2026, 8:13 a.m. πŸ”„ Last Modified: March 19, 2026, 8:13 a.m.

7.1

CVSS3.1

CVE-2025-53222 - WordPress tagDiv Opt-In Builder plugin <= 1.7.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tagDiv tagDiv Opt-In Builder allows Reflected XSS.This issue affects tagDiv Opt-In Builder: from n/a through 1.7.3.

πŸ“… Published: March 19, 2026, 8:10 a.m. πŸ”„ Last Modified: March 19, 2026, 8:10 a.m.
Total resulsts: 338620
Page 2 of 33,862
Β« previous page Β» next page
Filters