Vulnerabilities (CVE)

Total 362495 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-52488 2026-06-17 N/A 9.9 CRITICAL
Subscriber Arbitrary File Upload in Grip <= 1.0.9 versions.
CVE-2025-69159 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Printo <= 1.11 versions.
CVE-2025-58952 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Neuronet < 1.14.0 versions.
CVE-2024-34810 2026-06-17 N/A 4.3 MEDIUM
Cross-Site request forgery (CSRF) vulnerability in Extend Themes Skyline WP allows Cross Site Request Forgery. This issue affects Skyline WP: from n/a through 1.0.10.
CVE-2025-58924 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Geya <= 1.15 versions.
CVE-2025-69104 2026-06-17 N/A 7.1 HIGH
Unauthenticated Cross Site Scripting (XSS) in Qreatix <= 1.9.4 versions.
CVE-2025-69116 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Iona <= 1.0.8 versions.
CVE-2025-58954 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in HomeRoofer <= 2.11.0 versions.
CVE-2025-69142 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Abelle <= 1.22 versions.
CVE-2025-69114 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in MaxiNet <= 1.2.10 versions.
CVE-2025-69124 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in Especio <= 1.0 versions.
CVE-2024-35690 2026-06-17 N/A 6.5 MEDIUM
Insertion of sensitive information into sent data vulnerability in MarketingFire Widget Options allows Retrieve Embedded Sensitive Data. This issue affects Widget Options: from n/a through 4.0.1.
CVE-2024-37496 2026-06-17 N/A 4.3 MEDIUM
Missing Authorization vulnerability in Rara Themes Metro Magazine allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Metro Magazine: from n/a through 1.3.7.
CVE-2026-40749 2026-06-17 N/A 9.9 CRITICAL
Subscriber Arbitrary File Upload in Charity Zone <= 1.1.1 versions.
CVE-2026-22340 2026-06-17 N/A 9.3 CRITICAL
Unauthenticated SQL Injection in WPJobster <= 6.3.5 versions.
CVE-2025-69176 2026-06-17 N/A 8.1 HIGH
Unauthenticated Local File Inclusion in ITactics <= 1.0 versions.
CVE-2026-54807 2026-06-17 N/A 9.8 CRITICAL
Unauthenticated Privilege Escalation in Registration Form for WooCommerce <= 1.0.9 versions.
CVE-2026-22343 2026-06-17 N/A 8.6 HIGH
Unauthenticated Broken Access Control in WordPress Dating Theme <= 11.2.0 versions.
CVE-2026-54192 2026-06-17 N/A 7.1 HIGH
Unauthenticated Cross Site Scripting (XSS) in Popup box <= 6.2.9 versions.
CVE-2026-40754 2026-06-17 N/A 8.1 HIGH
Unauthenticated PHP Object Injection in Roisin <= 1.4 versions.