Total CVEs

143,749

Critical Severity

4,091

High Severity

14,758

Last 7 Days

1,518
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 2,001 - 2,020 of 40,154 CVEs
CVE-2026-57623 CRITICAL - 9.0

Unauthenticated Arbitrary Code Execution in W3 Total Cache <= 2.9.4 versions.

Vendor: BoldGrid
Product: W3 Total Cache
Published: Jul 02, 2026
Source: NVD
CVE-2026-57621 CRITICAL - 9.8

Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions.

Vendor: Arraytics
Product: Booktics
Published: Jul 02, 2026
Source: NVD
CVE-2026-57426 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in Modula - PRO <= 2.10.8 versions.

Vendor: Chill Media Labs S.R.L.
Product: Modula - PRO
Published: Jul 02, 2026
Source: NVD
CVE-2026-57366 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in WPAdverts <= 2.3.1 versions.

Vendor: Greg Winiarski
Product: WPAdverts
Published: Jul 02, 2026
Source: NVD
CVE-2026-57362 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in ChatBot <= 8.3.2 versions.

Vendor: QuantumCloud
Product: ChatBot
Published: Jul 02, 2026
Source: NVD
CVE-2026-57361 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in Survey Maker <= 5.2.2.5 versions.

Vendor: Ays Pro
Product: Survey Maker
Published: Jul 02, 2026
Source: NVD
CVE-2026-57360 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in eCommerce Product Catalog <= 3.5.4 versions.

Vendor: impleCode
Product: eCommerce Product Catalog
Published: Jul 02, 2026
Source: NVD
CVE-2026-57359 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in ReviewX <= 2.3.10 versions.

Vendor: ReviewX
Product: ReviewX
Published: Jul 02, 2026
Source: NVD
CVE-2026-57358 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in Customize My Account for WooCommerce <= 4.3.9 versions.

Vendor: SysBasics
Product: Customize My Account for WooCommerce
Published: Jul 02, 2026
Source: NVD
CVE-2026-57357 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in Search Atlas SEO <= 2.6.6 versions.

Vendor: Search Atlas Group
Product: Search Atlas SEO
Published: Jul 02, 2026
Source: NVD
CVE-2026-57356 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in MC Woocommerce Wishlist <= 1.9.19 versions.

Vendor: Moreconvert Team
Product: MC Woocommerce Wishlist
Published: Jul 02, 2026
Source: NVD
CVE-2026-57355 MEDIUM - 6.5

Subscriber Broken Access Control in Classified Listing <= 5.4.2 versions.

Vendor: RadiusTheme
Product: Classified Listing
Published: Jul 02, 2026
Source: NVD
CVE-2026-57354 MEDIUM - 6.5

Subscriber Cross Site Scripting (XSS) in JetReviews <= 3.0.0.1 versions.

Vendor: Crocoblock. Jetimpex Inc.
Product: JetReviews
Published: Jul 02, 2026
Source: NVD
CVE-2026-57353 MEDIUM - 6.5

Subscriber Broken Access Control in Link Whisper Premium <= 2.9.0 versions.

Vendor: LinkWhisper
Product: Link Whisper Premium
Published: Jul 02, 2026
Source: NVD
CVE-2026-57352 MEDIUM - 4.8

Unauthenticated Broken Authentication in ALD โ€“ Dropshipping and Fulfillment for AliExpress and WooCommerce <= 2.2.0 versions.

Vendor: VillaTheme
Product: ALD โ€“ Dropshipping and Fulfillment for AliExpress and WooCommerce
Published: Jul 02, 2026
Source: NVD
CVE-2026-57351 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in HandL UTM Grabber <= 2.9.2 versions.

Vendor: Haktan Suren
Product: HandL UTM Grabber
Published: Jul 02, 2026
Source: NVD
CVE-2026-57350 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in WP Debugging <= 2.12.2 versions.

Vendor: Andy Fragen
Product: WP Debugging
Published: Jul 02, 2026
Source: NVD
CVE-2026-57349 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in WPeMatico RSS Feed Fetcher <= 2.8.17 versions.

Vendor: etruel
Product: WPeMatico RSS Feed Fetcher
Published: Jul 02, 2026
Source: NVD
CVE-2026-57348 HIGH - 7.2

Unauthenticated Server Side Request Forgery (SSRF) in Paid Member Subscriptions <= 3.0.4 versions.

Vendor: Cozmoslabs
Product: Paid Member Subscriptions
Published: Jul 02, 2026
Source: NVD
CVE-2026-57347 MEDIUM - 6.5

Subscriber Sensitive Data Exposure in Hotel Booking Lite <= 6.0.3 versions.

Vendor: jetmonsters
Product: Hotel Booking Lite
Published: Jul 02, 2026
Source: NVD