Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (323620 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2019-15846 2 Debian, Exim 2 Debian Linux, Exim 2024-11-21 N/A
Exim before 4.92.2 allows remote attackers to execute arbitrary code as root via a trailing backslash.
CVE-2019-15845 3 Canonical, Redhat, Ruby-lang 6 Ubuntu Linux, Enterprise Linux, Rhel E4s and 3 more 2024-11-21 6.5 Medium
Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 mishandles path checking within File.fnmatch functions.
CVE-2019-15843 1 Mi 1 Xiaomi Millet Firmware 2024-11-21 7.4 High
A malicious file upload vulnerability was discovered in Xiaomi Millet mobile phones 1-6.3.9.3. A particular condition involving a man-in-the-middle attack may lead to partial data leakage or malicious file writing.
CVE-2019-15842 1 Easy Pdf Restaurant Menu Upload Project 1 Easy Pdf Restaurant Menu Upload 2024-11-21 N/A
The easy-pdf-restaurant-menu-upload plugin before 1.1.2 for WordPress has XSS.
CVE-2019-15841 1 Facebook 1 Facebook For Woocommerce 2024-11-21 N/A
The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, or ajax_fb_toggle_visibility.
CVE-2019-15840 1 Facebook 1 Facebook For Woocommerce 2024-11-21 N/A
The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF.
CVE-2019-15838 1 Kunalnagar 1 Custom 404 Pro 2024-11-21 N/A
The custom-404-pro plugin before 3.2.8 for WordPress has reflected XSS, a different vulnerability than CVE-2019-14789.
CVE-2019-15837 1 Bitwise-it 1 Webp Express 2024-11-21 N/A
The webp-express plugin before 0.14.8 for WordPress has stored XSS.
CVE-2019-15836 1 Bootstrapped 1 Wp Ultimate Recipe 2024-11-21 N/A
The wp-ultimate-recipe plugin before 3.12.7 for WordPress has stored XSS.
CVE-2019-15835 1 Wp Better Permalinks Project 1 Wp Better Permalinks 2024-11-21 N/A
The wp-better-permalinks plugin before 3.0.5 for WordPress has CSRF.
CVE-2019-15834 1 Webp Converter For Media Project 1 Webp Converter For Media 2024-11-21 N/A
The webp-converter-for-media plugin before 1.0.3 for WordPress has CSRF.
CVE-2019-15833 1 Simple Mail Address Encoder Project 1 Simple Mail Address Encoder 2024-11-21 6.1 Medium
The simple-mail-address-encoder plugin before 1.7 for WordPress has reflected XSS.
CVE-2019-15832 1 Wp-buy 1 Visitor Traffic Real Time Statistics 2024-11-21 N/A
The visitors-traffic-real-time-statistics plugin before 1.13 for WordPress has CSRF.
CVE-2019-15831 1 Wp-buy 1 Visitor Traffic Real Time Statistics 2024-11-21 N/A
The visitors-traffic-real-time-statistics plugin before 1.12 for WordPress has CSRF in the settings page.
CVE-2019-15830 1 Icegram 1 Icegram Engage 2024-11-21 N/A
The icegram plugin before 1.10.29 for WordPress has ig_cat_list XSS.
CVE-2019-15829 1 Greentreelabs 1 Gallery Photoblocks 2024-11-21 N/A
The photoblocks-grid-gallery plugin before 1.1.33 for WordPress has wp-admin/admin.php?page=photoblocks-edit&id= XSS.
CVE-2019-15828 1 Tribulant 1 One Click Ssl 2024-11-21 N/A
The one-click-ssl plugin before 1.4.7 for WordPress has CSRF.
CVE-2019-15827 1 Onesignal 1 Onesignal-free-web-push-notifications 2024-11-21 N/A
The onesignal-free-web-push-notifications plugin before 1.17.8 for WordPress has XSS via the subdomain parameter.
CVE-2019-15826 1 Wpserveur 1 Wps Hide Login 2024-11-21 N/A
The wps-hide-login plugin before 1.5.3 for WordPress has a protection bypass via wp-login.php in the Referer field.
CVE-2019-15825 1 Wpserveur 1 Wps Hide Login 2024-11-21 N/A
The wps-hide-login plugin before 1.5.3 for WordPress has an action=rp&key&login protection bypass.