Total CVEs

143,081

Critical Severity

4,044

High Severity

14,530

Last 7 Days

1,278
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 21 - 40 of 39,486 CVEs
CVE-2026-31983 MEDIUM - 5.3

A Missing Authentication vulnerability was discovered in the SSH keys synchronization endpoint. An unauthenticated attacker can send a request to the SSH keys synchronization endpoint and obtain the list of users that have uploaded their public SSH keys, their groups, and the uploaded public SSH key...

Vendor: Nozomi Networks
Product: Guardian, CMC
Published: Jul 09, 2026
Source: NVD
CVE-2026-31982 HIGH - 7.1

An Open Redirect vulnerability was discovered in the SAML Single Sign-On functionality due to insufficient validation of a user-controlled redirection parameter. An unauthenticated attacker can craft a request to the SAML sign-in endpoint and poison the cached SAML redirection for other users who su...

Vendor: Nozomi Networks
Product: Guardian, CMC
Published: Jul 09, 2026
Source: NVD
CVE-2026-31981 MEDIUM - 5.9

A Stored HTML Injection vulnerability was discovered in the Diagram tab and Graph view due to a shared input validation function being insufficiently restrictive. An authenticated user with administrative privileges can inject malicious HTML tags into N2OS configuration data through multiple input v...

Vendor: Nozomi Networks
Product: Guardian, CMC
Published: Jul 09, 2026
Source: NVD
CVE-2026-15000 HIGH - 7.2

The Connect Contact Form 7 and Mailchimp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Mailchimp Merge Field Values in all versions up to, and including, 0.9.78.06 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers...

Vendor: rnzo
Product: Connect Contact Form 7 and Mailchimp
Published: Jul 09, 2026
Source: NVD
CVE-2026-14343 MEDIUM - 6.4

The Download Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'note_before' and 'note_after' Shortcode Attributes in all versions up to, and including, 3.3.61 due to insufficient input sanitization and output escaping. This makes it possible for authe...

Vendor: codename065
Product: Download Manager
Published: Jul 09, 2026
Source: NVD
CVE-2026-14342 MEDIUM - 4.9

The Mail Mint โ€“ Email Marketing, Newsletter, Email Automation & WooCommerce Emails plugin for WordPress is vulnerable to time-based SQL Injection via the 'contact_ids' parameter in all versions up to, and including, 1.24.2 due to insufficient escaping on the user supplied parameter and...

Vendor: getwpfunnels
Product: Mail Mint โ€“ Email Marketing, Newsletter, Email Automation & WooCommerce Emails
Published: Jul 09, 2026
Source: NVD
CVE-2026-14245 CRITICAL - 9.8

The miniOrange OTP Login, Verification and SMS Notifications plugin for WordPress is vulnerable to Authentication Bypass leading to Administrator Account Takeover in all versions up to, and including, 5.5.1. This is due to the `um_reset_password_process_hook()` function performing no server-side ver...

Vendor: cyberlord92
Product: miniOrange OTP Login, Verification and SMS Notifications
Published: Jul 09, 2026
Source: NVD
CVE-2026-13771 MEDIUM - 6.4

The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'color' Shortcode Attribute in all versions up to, and including, 5.113.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attacker...

Vendor: ivole
Product: Customer Reviews for WooCommerce
Published: Jul 09, 2026
Source: NVD
CVE-2026-13450 MEDIUM - 5.3

The GamiPress โ€“ Gamification plugin to reward points, achievements, badges & ranks in WordPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.9.4 via the 'access' parameter due to missing validation on a user controlled k...

Vendor: rubengc
Product: GamiPress โ€“ Gamification plugin to reward points, achievements, badges & ranks in WordPress
Published: Jul 09, 2026
Source: NVD
CVE-2026-13334 MEDIUM - 6.1

The Mang Board WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'stag' parameter in all versions up to, and including, 2.3.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary w...

Vendor: kitae-park
Product: Mang Board WP
Published: Jul 09, 2026
Source: NVD
CVE-2026-13253 MEDIUM - 6.4

The Ultimate Post plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'moreResultsText' block attribute of the ultimate-post/advanced-search block in versions up to and including 5.0.31. This is due to insufficient input sanitization and output escaping in the Advance...

Vendor: wpxpo
Product: Post Grid Gutenberg Blocks โ€“ PostX
Published: Jul 09, 2026
Source: NVD
CVE-2026-13080 MEDIUM - 6.6

The WPFunnels โ€“ Funnel Builder for WooCommerce with Checkout & One Click Upsell plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.12.7 via the 'logKey' parameter parameter. This makes it possible for authenticated attackers, with adminis...

Vendor: getwpfunnels
Product: WPFunnels โ€“ Funnel Builder for WooCommerce with Checkout & One Click Upsell
Published: Jul 09, 2026
Source: NVD
CVE-2026-13011 MEDIUM - 6.5

The ERP: Complete HR, Accounting & CRM Suite with Recruitment and WooCommerce CRM Support plugin for WordPress is vulnerable to generic SQL Injection via the 'orderby' parameter in all versions up to, and including, 1.17.5 due to insufficient escaping on the user supplied parameter and...

Vendor: wedevs
Product: ERP: Complete HR, Accounting & CRM Suite Built for WooCommerce
Published: Jul 09, 2026
Source: NVD
CVE-2026-12418 MEDIUM - 5.3

The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.3.7 via the 'wpuf_files_data' parameter due to missing validation on a ...

Vendor: wedevs
Product: User Frontend: AI Powered Frontend Posting, User Directory, Profile Builder, Membership & User Registration
Published: Jul 09, 2026
Source: NVD
CVE-2026-12406 MEDIUM - 5.3

The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 4.3.7. This is due to the plugin not properly verifying that a user is authorized to perform an...

Vendor: wedevs
Product: User Frontend: AI Powered Frontend Posting, User Directory, Profile Builder, Membership & User Registration
Published: Jul 09, 2026
Source: NVD
CVE-2026-12170 MEDIUM - 6.4

The AcyMailing โ€“ An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'alignment' attribute in all versions up to, and including, 10.10.2 due to insufficient input sanitization and output esc...

Vendor: acyba
Product: AcyMailing โ€“ An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress
Published: Jul 09, 2026
Source: NVD
CVE-2026-11359 MEDIUM - 4.3

The Memberships and User Profiles for WooCommerce โ€“ ProfileGrid WooCommerce Integration plugin for WordPress is vulnerable to unauthorized plugin installation and activation in versions up to, and including, 3.4. This is due to a missing capability check and missing nonce validation on the pg_instal...

Vendor: metagauss
Product: Memberships and User Profiles for WooCommerce โ€“ ProfileGrid WooCommerce Integration
Published: Jul 09, 2026
Source: NVD
CVE-2026-47840 HIGH - 7.5

A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certificate from any trusted CA, then harvest the LDAP bind password and every end-user password sent during simple-bind authentication, and return forged group memberships that grant themselves ...

Vendor: CloudFoundry Foundation
Product: UAA, Cf-deployment
Published: Jul 09, 2026
Source: NVD
CVE-2026-47831 HIGH - 7.5

Use of a cryptographically weak random number generator in the GenerateRandomPassword function in bosh-windows-stemcell-builder allows a remote attacker to brute-force the resulting SSH login via TCP/22. Affected versions: bosh-windows-stemcell-builder versions prior to v2019.98.

Vendor: Cloud Foundry Foundation
Product: bosh-windows-stemcell-builder
Published: Jul 09, 2026
Source: NVD
CVE-2026-47830 HIGH - 8.8

Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-privilege authenticated users to overwrite C:\bosh\service_wrapper.exe or C:\bosh\bosh-agent.exe and gain NT AUTHORITY\SYSTEM on the next service restart or reboot. This can lead to full hos...

Vendor: Cloud Foundry Foundation
Product: bosh-windows-stemcell-builder
Published: Jul 09, 2026
Source: NVD