CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (359603 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-25704	1 Wpmart	1 Interactive Svg Image Map Builder	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mehjabin Orthi Interactive SVG Image Map Builder plugin <= 1.0 versions.
CVE-2022-38077	1 Essentialplugin	1 Popup Anything	2025-01-10	4.3 Medium
Cross-Site Request Forgery (CSRF) vulnerability in WP OnlineSupport, Essential Plugin Popup Anything – A Marketing Popup and Lead Generation Conversions plugin <= 2.2.1 versions.
CVE-2022-47438	1 Wpdevart	1 Booking Calendar	2025-01-10	5.9 Medium
Auth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in WpDevArt Booking calendar, Appointment Booking System plugin <= 3.2.3 versions.
CVE-2022-47444	1 Properfraction	1 Profilepress	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team Paid Membership Plugin, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin <= 4.5.3 versions.
CVE-2023-23861	1 Gmace Project	1 Gmace	2025-01-10	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in German Mesky GMAce plugin <= 1.5.2 versions.
CVE-2022-45355	1 Thimpress	1 Wp Pipes	2025-01-10	8.2 High
Auth. (admin+) SQL Injection (SQLi) vulnerability in ThimPress WP Pipes plugin <= 1.33 versions.
CVE-2022-47610	1 Mrdigital	1 Simple Image Popup	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mr Digital Simple Image Popup plugin <= 1.3.6 versions.
CVE-2022-47607	1 Usersnap	1 Usersnap	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Usersnap plugin <= 4.16 versions.
CVE-2022-47603	1 Wpdevart	1 Image And Video Gallery With Thumbnails	2025-01-10	7.1 High
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.1 versions.
CVE-2022-47602	1 Joomunited	1 Wp Table Manager	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in JoomUnited WP Table Manager plugin <= 3.5.2 versions.
CVE-2023-23681	1 Webdevocean	1 Image Hover Effects For Wpbakery Page Builder	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Labib Ahmed Image Hover Effects For WPBakery Page Builder plugin <= 4.0 versions.
CVE-2023-24399	1 Oceanwp	1 Ocean Extra	2025-01-10	5.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in OceanWP Ocean Extra plugin <= 2.1.2 versions.
CVE-2023-26529	1 Dupeoff Project	1 Dupeoff	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in DupeOff.Com DupeOff plugin <= 1.6 versions.
CVE-2022-41633	1 Peepso	1 Peepso	2025-01-10	5.4 Medium
Cross-Site Request Forgery (CSRF) vulnerability in PeepSo Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin <= 6.0.2.0 versions.
CVE-2023-23686	1 Simple Staff List Project	1 Simple Staff List	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Brett Shumaker Simple Staff List plugin <= 2.2.2 versions.
CVE-2023-23870	1 Wpdevart	1 Responsive Vertical Icon Menu	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in wpdevart Responsive Vertical Icon Menu plugin <= 1.5.8 versions.
CVE-2023-23981	1 Quantumcloud	1 Conversational Forms For Chatbot	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in QuantumCloud Conversational Forms for ChatBot plugin <= 1.1.6 versions.
CVE-2023-23982	1 Wpfrom Email Project	1 Wpfrom Email	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in WPGear.Pro WPFrom Email plugin <= 1.8.8 versions.
CVE-2023-23815	1 Multi-column Tag Map Project	1 Multi-column Tag Map	2025-01-10	6.5 Medium
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Alan Jackson Multi-column Tag Map plugin <= 17.0.24 versions.
CVE-2023-23972	1 Wpdevart	1 Social Like Box And Page	2025-01-10	5.9 Medium
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Smplug-in Social Like Box and Page by WpDevArt plugin <= 0.8.39 versions.

« first previous Page 11946 of 17981. next last »