Export limit exceeded: 361364 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Expected end of text, found ':' (at char 28), (line:1, col:29)
Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (361364 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2026-57660 2026-06-26 5.3 Medium
Unauthenticated Broken Access Control in Booking and Rental Manager <= 2.7.1 versions.
CVE-2026-57657 2026-06-26 4.3 Medium
Unauthenticated Cross Site Request Forgery (CSRF) in Gmail SMTP <= 1.2.3.19 versions.
CVE-2026-57655 2026-06-26 8.2 High
Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard <= 1.4 versions.
CVE-2026-57654 2026-06-26 6.5 Medium
Affiliate Broken Access Control in Affiliates Manager <= 2.9.49 versions.
CVE-2026-57651 2026-06-26 6.5 Medium
Contributor Cross Site Scripting (XSS) in Ghost Kit <= 3.6.0 versions.
CVE-2026-57649 2026-06-26 4.3 Medium
Subscriber Broken Access Control in Shoppable Images Lite <= 1.3 versions.
CVE-2026-57648 2026-06-26 4.3 Medium
Contributor Broken Access Control in Nelio Content <= 4.3.4 versions.
CVE-2026-57645 2026-06-26 8.1 High
newsletters_subscribers Broken Access Control in Newsletters <= 4.13 versions.
CVE-2026-57643 2026-06-26 8.5 High
Contributor SQL Injection in WP Post Author <= 3.9.1 versions.
CVE-2026-57642 2026-06-26 8.5 High
Contributor SQL Injection in Gallery <= 4.7.8 versions.
CVE-2026-57638 2026-06-26 6.5 Medium
Contributor Cross Site Scripting (XSS) in Fluent Booking <= 2.1.0 versions.
CVE-2026-57636 2026-06-26 8.5 High
Contributor SQL Injection in wpForo Forum <= 3.0.9 versions.
CVE-2026-57635 2026-06-26 6.5 Medium
Unauthenticated Cross Site Request Forgery (CSRF) in FunnelKit Payment Gateway for Stripe WooCommerce <= 1.14.0.3 versions.
CVE-2026-57632 2026-06-26 5.4 Medium
Subscriber Broken Access Control in Email Marketing for WooCommerce by Omnisend <= 1.19.0 versions.
CVE-2026-57631 2026-06-26 7.6 High
Administrator SQL Injection in Popup box <= 6.0.1 versions.
CVE-2026-57630 2026-06-26 5.3 Medium
Unauthenticated Insecure Direct Object References (IDOR) in Blocksy Companion Pro <= 2.1.46 versions.
CVE-2026-57629 2026-06-26 6.5 Medium
Contributor Cross Site Scripting (XSS) in StatCounter <= 2.1.1 versions.
CVE-2026-57622 2026-06-26 4.3 Medium
Subscriber Broken Access Control in WPCafe <= 3.0.14 versions.
CVE-2026-57617 2026-06-26 6.5 Medium
Contributor Cross Site Scripting (XSS) in SeedProd Pro < 6.19.5 versions.
CVE-2026-57431 2026-06-26 6.5 Medium
Author Cross Site Scripting (XSS) in Featured Image <= 2.1 versions.