Export limit exceeded: 359296 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 359296 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (359296 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-69117 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Ingenioso <= 1.14.0 versions. | ||||
| CVE-2026-22329 | 2026-06-17 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Skillate <= 1.2.10 versions. | ||||
| CVE-2025-69161 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Snowy <= 1.13 versions. | ||||
| CVE-2025-69179 | 2026-06-17 | 9.8 Critical | ||
| Unauthenticated Privilege Escalation in Support Ticket Management System <= 1.9 versions. | ||||
| CVE-2026-22326 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Reprizo <= 1.0.8 versions. | ||||
| CVE-2026-22330 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Right Way <= 4.0 versions. | ||||
| CVE-2026-22332 | 2026-06-17 | 9.3 Critical | ||
| Unauthenticated SQL Injection in Tutor LMS Pro <= 3.9.6 versions. | ||||
| CVE-2026-22342 | 2026-06-17 | 8.8 High | ||
| Unauthenticated Cross Site Request Forgery (CSRF) in WordPress Dating Theme <= 11.2.0 versions. | ||||
| CVE-2025-69145 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Gat <= 1.16 versions. | ||||
| CVE-2026-25446 | 2026-06-17 | 9.9 Critical | ||
| Subscriber Arbitrary File Upload in WishList Member X <= 3.29.0 versions. | ||||
| CVE-2026-39545 | 2026-06-17 | 8.1 High | ||
| Unauthenticated PHP Object Injection in Zermatt <= 1.6.1 versions. | ||||
| CVE-2025-69127 | 2026-06-17 | 9.8 Critical | ||
| Unauthenticated PHP Object Injection in Plumbing <= 1.6 versions. | ||||
| CVE-2026-39595 | 2 Boldgrid, Wordpress | 2 W3 Total Cache, Wordpress | 2026-06-17 | 4.7 Medium |
| Author Broken Access Control in W3 Total Cache <= 2.9.1 versions. | ||||
| CVE-2025-59554 | 2026-06-17 | 9.3 Critical | ||
| Unauthenticated SQL Injection in Advanced Ads – Tracking < 3.0.7 versions. | ||||
| CVE-2026-40725 | 2026-06-17 | 9.8 Critical | ||
| Unauthenticated PHP Object Injection in WooCommerce Product Filters < 2.0.6 versions. | ||||
| CVE-2026-40748 | 2026-06-17 | 9.9 Critical | ||
| Subscriber Arbitrary File Upload in Kids Gift Shop <= 0.5.4 versions. | ||||
| CVE-2025-69106 | 2026-06-17 | 8.1 High | ||
| Unauthenticated Local File Inclusion in Imba <= 1.5.0 versions. | ||||
| CVE-2026-41557 | 2026-06-17 | 7.1 High | ||
| Unauthenticated Cross Site Scripting (XSS) in Kapee < 1.7.1 versions. | ||||
| CVE-2024-35648 | 2026-06-17 | 4.3 Medium | ||
| Cross-Site request forgery (CSRF) vulnerability in Andy Moyle Emergency Password Reset allows Cross Site Request Forgery. This issue affects Emergency Password Reset: from n/a through 8.0. | ||||
| CVE-2026-45436 | 2026-06-17 | 6.5 Medium | ||
| Subscriber Broken Access Control in WPBakery Page Builder <= 8.7.2 versions. | ||||