Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (322822 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2015-9356 1 Wp-vipergb Project 1 Wp-vipergb 2024-11-21 N/A
The wp-vipergb plugin before 1.3.16 for WordPress has XSS via add_query_arg() and remove_query_arg(), a different issue than CVE-2014-9460.
CVE-2015-9355 1 Simbahosting 1 Two-factor-authentication 2024-11-21 N/A
The two-factor-authentication plugin before 1.1.10 for WordPress has XSS in the admin area.
CVE-2015-9354 1 Tri.be 1 Gigpress 2024-11-21 N/A
The gigpress plugin before 2.3.11 for WordPress has XSS.
CVE-2015-9353 1 Tri 1 Gigpress 2024-11-21 7.2 High
The gigpress plugin before 2.3.11 for WordPress has SQL injection in the admin area, a different vulnerability than CVE-2015-4066.
CVE-2015-9352 1 Wp-polls Project 1 Wp-polls 2024-11-21 N/A
The wp-polls plugin before 2.72 for WordPress has SQL injection.
CVE-2015-9351 1 Slickremix 1 Feed Them Social 2024-11-21 N/A
The feed-them-social plugin before 1.7.0 for WordPress has possible shortcode execution in the Facebook Feeds load more button.
CVE-2015-9350 1 Slickremix 1 Feed Them Social 2024-11-21 N/A
The feed-them-social plugin before 1.7.0 for WordPress has reflected XSS in the Facebook Feeds load more button.
CVE-2015-9349 1 Cksource 1 Ckeditor 2024-11-21 N/A
The ckeditor-for-wordpress plugin before 4.5.3.1 for WordPress has reflected XSS in the "built-in (old)" file browser.
CVE-2015-9348 1 Codepeople 1 Sell Downloads 2024-11-21 N/A
The sell-downloads plugin before 1.0.8 for WordPress has insufficient restrictions on brute-force guessing of purchase IDs.
CVE-2015-9347 1 Plot 1 Plotly 2024-11-21 N/A
The wp-plotly plugin before 1.0.3 for WordPress has XSS by authors.
CVE-2015-9346 1 Codepeople 1 Polls Cp 2024-11-21 N/A
The cp-polls plugin before 1.0.5 for WordPress has XSS.
CVE-2015-9345 1 Petersplugins 1 Link Log 2024-11-21 N/A
The link-log plugin before 2.0 for WordPress has HTTP Response Splitting.
CVE-2015-9344 1 Perafox 1 Link Log 2024-11-21 N/A
The link-log plugin before 2.1 for WordPress has SQL injection.
CVE-2015-9343 1 Impress 1 Wp Rollback 2024-11-21 N/A
The wp-rollback plugin before 1.2.3 for WordPress has CSRF.
CVE-2015-9342 1 Impress 1 Wp Rollback 2024-11-21 N/A
The wp-rollback plugin before 1.2.3 for WordPress has XSS.
CVE-2015-9341 1 Iptanus 1 Wordpress File Upload 2024-11-21 N/A
The wp-file-upload plugin before 3.4.1 for WordPress has insufficient restrictions on upload of .php.js files.
CVE-2015-9340 1 Iptanus 1 Wordpress File Upload 2024-11-21 N/A
The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files.
CVE-2015-9339 1 Iptanus 1 Wordpress File Upload 2024-11-21 N/A
The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js files.
CVE-2015-9338 1 Iptanus 1 Wordpress File Upload 2024-11-21 N/A
The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php files.
CVE-2015-9337 1 Cozmoslabs 1 Profile Builder 2024-11-21 N/A
The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX.