9.1

CVSS3.1

CVE-2026-27067 - WordPress Mobile App Editor plugin <= 1.3.1 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Syarif Mobile App Editor mobile-app-editor allows Upload a Web Shell to a Web Server.This issue affects Mobile App Editor: from n/a through <= 1.3.1.

πŸ“… Published: March 19, 2026, 8:41 a.m. πŸ”„ Last Modified: April 23, 2026, 3:37 p.m.

9.8

CVSS3.1

CVE-2026-27065 - WordPress BuilderPress plugin <= 2.0.1 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThimPress BuilderPress builderpress allows PHP Local File Inclusion.This issue affects BuilderPress: from n/a through <= 2.0.1.

πŸ“… Published: March 19, 2026, 8:39 a.m. πŸ”„ Last Modified: April 23, 2026, 3:37 p.m.

8.8

CVSS3.1

CVE-2026-25445 - WordPress WishList Member X plugin <= 3.29.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Membership Software WishList Member X allows Object Injection.This issue affects WishList Member X: from n/a through 3.29.0.

πŸ“… Published: March 19, 2026, 8:37 a.m. πŸ”„ Last Modified: April 28, 2026, 4:14 p.m.

7.5

CVSS3.1

CVE-2026-25443 - WordPress Fraud Prevention For Woocommerce plugin <= 2.3.3 - Arbitrary Content Deletion vulnerabili…

Missing Authorization vulnerability in Dotstore Fraud Prevention For Woocommerce woo-blocker-lite-prevent-fake-orders-and-blacklist-fraud-customers allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fraud Prevention For Woocommerce: from n/a through <= 2.3.3.

πŸ“… Published: March 19, 2026, 8:36 a.m. πŸ”„ Last Modified: April 23, 2026, 3:37 p.m.

7.1

CVSS3.1

CVE-2026-25442 - WordPress Kentha theme <= 4.7.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QantumThemes Kentha kentha allows Reflected XSS.This issue affects Kentha: from n/a through <= 4.7.2.

πŸ“… Published: March 19, 2026, 8:35 a.m. πŸ”„ Last Modified: April 23, 2026, 3:37 p.m.

7.1

CVSS3.1

CVE-2026-25438 - WordPress Gutenberg Blocks – Unlimited blocks For Gutenberg plugin <= 1.2.8 - Reflected Cross Site …

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeHunk Gutenberg Blocks unlimited-blocks allows Reflected XSS.This issue affects Gutenberg Blocks: from n/a through <= 1.2.8.

πŸ“… Published: March 19, 2026, 8:34 a.m. πŸ”„ Last Modified: April 23, 2026, 3:37 p.m.

7.1

CVSS3.1

CVE-2025-68836 - WordPress Table of Contents Creator plugin <= 1.6.4.1 - Reflected Cross Site Scripting (XSS) vulner…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Markbeljaars Table of Contents Creator allows Reflected XSS.This issue affects Table of Contents Creator: from n/a through 1.6.4.1.

πŸ“… Published: March 19, 2026, 8:33 a.m. πŸ”„ Last Modified: April 28, 2026, 4:14 p.m.

7.1

CVSS3.1

CVE-2025-67618 - WordPress Brookside theme <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ArtstudioWorks Brookside allows Reflected XSS.This issue affects Brookside: from n/a through 1.4.

πŸ“… Published: March 19, 2026, 8:31 a.m. πŸ”„ Last Modified: April 28, 2026, 4:14 p.m.

6.5

CVSS3.1

CVE-2025-62043 - WordPress WPCasa plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in WPSight WPCasa allows DOM-Based XSS.This issue affects WPCasa: from n/a through 1.4.1.

πŸ“… Published: March 19, 2026, 8:25 a.m. πŸ”„ Last Modified: April 22, 2026, 9:32 p.m.

9.8

CVSS3.1

CVE-2025-60237 - WordPress Finag theme <= 1.5.0 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Themeton Finag allows Object Injection.This issue affects Finag: from n/a through 1.5.0.

πŸ“… Published: March 19, 2026, 8:14 a.m. πŸ”„ Last Modified: April 28, 2026, 4:13 p.m.
Total resulsts: 349182
Page 1050 of 34,919
Β« previous page Β» next page
Filters