Total CVEs

138,754

Critical Severity

3,601

High Severity

12,905

Last 7 Days

1,536
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 1,201 - 1,220 of 35,159 CVEs
CVE-2025-69160 HIGH - 8.1

Unauthenticated Local File Inclusion in Gita <= 1.11 versions.

Vendor: ThemeREX
Product: Gita
Published: Jun 17, 2026
Source: NVD
CVE-2025-69159 HIGH - 8.1

Unauthenticated Local File Inclusion in Printo <= 1.11 versions.

Vendor: ThemeREX
Product: Printo
Published: Jun 17, 2026
Source: NVD
CVE-2025-69151 HIGH - 7.1

Unauthenticated Cross Site Scripting (XSS) in Grand Car Rental <= 3.7 versions.

Vendor: ThemeGoods
Product: Grand Car Rental
Published: Jun 17, 2026
Source: NVD
CVE-2025-69150 HIGH - 8.1

Unauthenticated Local File Inclusion in Medeus <= 1.14 versions.

Vendor: ThemeREX
Product: Medeus
Published: Jun 17, 2026
Source: NVD
CVE-2025-69149 HIGH - 8.1

Unauthenticated Local File Inclusion in Top Dog <= 1.0.5 versions.

Vendor: ThemeREX
Product: Top Dog
Published: Jun 17, 2026
Source: NVD
CVE-2025-69148 HIGH - 8.1

Unauthenticated Local File Inclusion in Quirky <= 1.23 versions.

Vendor: ThemeREX
Product: Quirky
Published: Jun 17, 2026
Source: NVD
CVE-2025-69147 HIGH - 8.1

Unauthenticated Local File Inclusion in Putter <= 1.17 versions.

Vendor: ThemeREX
Product: Putter
Published: Jun 17, 2026
Source: NVD
CVE-2025-69146 HIGH - 8.1

Unauthenticated Local File Inclusion in Dom <= 1.24 versions.

Vendor: ThemeREX
Product: Dom
Published: Jun 17, 2026
Source: NVD
CVE-2025-69145 HIGH - 8.1

Unauthenticated Local File Inclusion in Gat <= 1.16 versions.

Vendor: ThemeREX
Product: Gat
Published: Jun 17, 2026
Source: NVD
CVE-2025-69143 HIGH - 8.1

Unauthenticated Local File Inclusion in Mission <= 1.22 versions.

Vendor: ThemeREX
Product: Mission
Published: Jun 17, 2026
Source: NVD
CVE-2025-69142 HIGH - 8.1

Unauthenticated Local File Inclusion in Abelle <= 1.22 versions.

Vendor: ThemeREX
Product: Abelle
Published: Jun 17, 2026
Source: NVD
CVE-2025-69141 HIGH - 8.1

Unauthenticated Local File Inclusion in Kelly Young <= 1.1.0 versions.

Vendor: ThemeREX
Product: Kelly Young
Published: Jun 17, 2026
Source: NVD
CVE-2025-69139 HIGH - 8.6

Unauthenticated Arbitrary File Deletion in Car Zone <= 3.7 versions.

Vendor: AivahThemes
Product: Car Zone
Published: Jun 17, 2026
Source: NVD
CVE-2025-69138 HIGH - 8.8

Subscriber Privilege Escalation in Genemy <= 1.6.6 versions.

Vendor: Jthemes
Product: Genemy
Published: Jun 17, 2026
Source: NVD
CVE-2025-69137 MEDIUM - 6.5

Subscriber Broken Access Control in Genemy <= 1.6.6 versions.

Vendor: Jthemes
Product: Genemy
Published: Jun 17, 2026
Source: NVD
CVE-2025-69136 HIGH - 8.1

Unauthenticated Local File Inclusion in Wanium <= 1.9.8 versions.

Vendor: THEMELOGI
Product: Wanium
Published: Jun 17, 2026
Source: NVD
CVE-2025-69135 HIGH - 8.5

Subscriber SQL Injection in Events Schedule - WordPress Events Calendar Plugin <= 2.7.2 versions.

Vendor: CurlyThemes
Product: Events Schedule - WordPress Events Calendar Plugin
Published: Jun 17, 2026
Source: NVD
CVE-2025-69131 HIGH - 7.5

Unauthenticated Arbitrary File Download in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site <= 1.0.7 versions.

Vendor: extendons
Product: WordPress & WooCommerce Scraper Plugin, Import Data from Any Site
Published: Jun 17, 2026
Source: NVD
CVE-2025-69129 CRITICAL - 10.0

Unauthenticated Arbitrary File Upload in WordPress & WooCommerce Scraper Plugin, Import Data from Any Site <= 1.0.7 versions.

Vendor: Extendons
Product: WordPress & WooCommerce Scraper Plugin, Import Data from Any Site
Published: Jun 17, 2026
Source: NVD
CVE-2025-69125 HIGH - 8.1

Unauthenticated Local File Inclusion in Food Drop <= 1.3 versions.

Vendor: ThemeREX
Product: Food Drop
Published: Jun 17, 2026
Source: NVD