Text\ CVEs and Security Vulnerabilities

Search

Expected end of text, found ':' (at char 26), (line:1, col:27)

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (358229 CVEs found)

CVE	Updated	CVSS v3.1
CVE-2026-40772	2026-06-15	10 Critical
Unauthenticated Arbitrary File Upload in GeekyBot <= 1.2.2 versions.
CVE-2026-40771	2026-06-15	9.3 Critical
Unauthenticated SQL Injection in Contest Gallery <= 28.1.6 versions.
CVE-2026-40770	2026-06-15	7.1 High
Unauthenticated Cross Site Scripting (XSS) in Coupon Affiliates <= 7.5.3 versions.
CVE-2026-40769	2026-06-15	8.6 High
Unauthenticated Arbitrary File Deletion in Contact Form Extender for Divi – Save Entries, File Upload & Country Code Field <= 1.0.6 versions.
CVE-2026-40767	2026-06-15	7.5 High
Unauthenticated Broken Access Control in wpForo Forum < 3.0.2 versions.
CVE-2026-40766	2026-06-15	8.5 High
Subscriber SQL Injection in MasterStudy LMS <= 3.7.25 versions.
CVE-2026-40762	2026-06-15	7.5 High
Unauthenticated SQL Injection in WPGraphQL < 2.11.1 versions.
CVE-2026-40743	2026-06-15	6.5 Medium
Unauthenticated Broken Access Control in Tutor LMS <= 3.9.7 versions.
CVE-2026-40741	2026-06-15	7.5 High
Unauthenticated Broken Access Control in Redsys for WooCommerce Light <= 7.0.0 versions.
CVE-2026-40732	2026-06-15	7.1 High
Unauthenticated Cross Site Scripting (XSS) in Notification for Telegram <= 3.5 versions.
CVE-2026-40727	2026-06-15	7.7 High
Sales Representative Arbitrary File Deletion in Groundhogg <= 4.4 versions.
CVE-2026-39594	2026-06-15	6.4 Medium
Subscriber Broken Access Control in Ultra Addons for WPForms <= 1.0.11 versions.
CVE-2026-39591	2026-06-15	9.9 Critical
Subscriber Arbitrary File Upload in WP-BusinessDirectory <= 4.0.0 versions.
CVE-2026-39587	2026-06-15	8.1 High
Unauthenticated Privilege Escalation in WP BASE Booking <= 5.9.0 versions.
CVE-2026-39584	2026-06-15	6.5 Medium
Subscriber Broken Access Control in RepairBuddy <= 4.1132 versions.
CVE-2026-39583	2026-06-15	9.8 Critical
Unauthenticated Privilege Escalation in Datalogics Ecommerce Delivery <= 2.6.62 versions.
CVE-2026-39579	2026-06-15	8.8 High
Contributor Privilege Escalation in B Blocks <= 2.0.31 versions.
CVE-2026-39540	2026-06-15	6.5 Medium
Subscriber Cross Site Scripting (XSS) in Shipment Tracker for Woocommerce <= 1.5.3.2 versions.
CVE-2026-39534	2026-06-15	7.5 High
Unauthenticated Broken Access Control in WP Directory Kit <= 1.5.0 versions.
CVE-2026-39533	2026-06-15	7.5 High
Unauthenticated Broken Access Control in AWP Classifieds <= 4.4.4 versions.

« first previous Page 7 of 17912. next last »