Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Total 361770 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2026-39529 2026-06-17 N/A 9.8 CRITICAL
Unauthenticated PHP Object Injection in Elementra <= 1.0.9 versions.
CVE-2026-39580 2026-06-17 N/A 8.1 HIGH
Unauthenticated PHP Object Injection in Micdrop <= 1.3.1 versions.
CVE-2026-39438 2026-06-17 N/A 9.3 CRITICAL
Unauthenticated SQL Injection in ListingPro <= 2.9.10 versions.
CVE-2025-69178 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Truemag <= 4.3.14.2 versions.
CVE-2026-40759 2026-06-17 N/A 8.1 HIGH
Unauthenticated PHP Object Injection in Esmée <= 1.4 versions.
CVE-2026-40726 2026-06-17 N/A 8.2 HIGH
Unauthenticated Broken Access Control in User Registration Stripe <= 1.3.14 versions.
CVE-2026-34895 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Softlab Core < 1.2.11 versions.
CVE-2026-40758 2026-06-17 N/A 8.1 HIGH
Unauthenticated PHP Object Injection in Léonie <= 1.2.1 versions.
CVE-2026-54186 2026-06-17 N/A 9.3 CRITICAL
Unauthenticated SQL Injection in JobSearch <= 3.2.9 versions.
CVE-2026-39548 2026-06-17 N/A 7.1 HIGH
Unauthenticated Cross Site Scripting (XSS) in MagOne <= 9.0 versions.
CVE-2026-52696 2026-06-17 N/A 7.5 HIGH
Unauthenticated Sensitive Data Exposure in JetBlog <= 2.4.8 versions.
CVE-2026-27041 2026-06-17 N/A 9.9 CRITICAL
Contributor Arbitrary File Upload in Unlimited Elements for Elementor (Premium) <= 2.0.6 versions.
CVE-2026-39568 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Mr. SEO <= 2.0 versions.
CVE-2026-40755 2026-06-17 N/A 8.1 HIGH
Unauthenticated PHP Object Injection in TechLink <= 1.3 versions.
CVE-2026-39578 2026-06-17 N/A 5.5 MEDIUM
Unauthenticated PHP Object Injection in Valiance <= 1.2 versions.
CVE-2026-39539 2026-06-17 N/A 8.1 HIGH
Unauthenticated PHP Object Injection in Alloggio - Hotel Booking <= 2.1.2 versions.
CVE-2026-48875 2026-06-17 N/A 9.3 CRITICAL
Unauthenticated SQL Injection in JetSmartFilters <= 3.8.1 versions.
CVE-2025-69177 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Roneous <= 2.1.5 versions.
CVE-2026-39557 2026-06-17 N/A 8.1 HIGH
Unauthenticated PHP Object Injection in NeoBeat <= 1.7 versions.
CVE-2026-22325 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Promo <= 1.3.0 versions.