Total CVEs

143,208

Critical Severity

4,054

High Severity

14,598

Last 7 Days

1,280
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 161 - 180 of 39,613 CVEs
CVE-2026-12418 MEDIUM - 5.3

The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.3.7 via the 'wpuf_files_data' parameter due to missing validation on a ...

Vendor: wedevs
Product: User Frontend: AI Powered Frontend Posting, User Directory, Profile Builder, Membership & User Registration
Published: Jul 09, 2026
Source: NVD
CVE-2026-12406 MEDIUM - 5.3

The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 4.3.7. This is due to the plugin not properly verifying that a user is authorized to perform an...

Vendor: wedevs
Product: User Frontend: AI Powered Frontend Posting, User Directory, Profile Builder, Membership & User Registration
Published: Jul 09, 2026
Source: NVD
CVE-2026-12170 MEDIUM - 6.4

The AcyMailing โ€“ An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'alignment' attribute in all versions up to, and including, 10.10.2 due to insufficient input sanitization and output esc...

Vendor: acyba
Product: AcyMailing โ€“ An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress
Published: Jul 09, 2026
Source: NVD
CVE-2026-11359 MEDIUM - 4.3

The Memberships and User Profiles for WooCommerce โ€“ ProfileGrid WooCommerce Integration plugin for WordPress is vulnerable to unauthorized plugin installation and activation in versions up to, and including, 3.4. This is due to a missing capability check and missing nonce validation on the pg_instal...

Vendor: metagauss
Product: Memberships and User Profiles for WooCommerce โ€“ ProfileGrid WooCommerce Integration
Published: Jul 09, 2026
Source: NVD
CVE-2026-47840 HIGH - 7.5

A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certificate from any trusted CA, then harvest the LDAP bind password and every end-user password sent during simple-bind authentication, and return forged group memberships that grant themselves ...

Vendor: CloudFoundry Foundation
Product: UAA, Cf-deployment
Published: Jul 09, 2026
Source: NVD
CVE-2026-47831 HIGH - 7.5

Use of a cryptographically weak random number generator in the GenerateRandomPassword function in bosh-windows-stemcell-builder allows a remote attacker to brute-force the resulting SSH login via TCP/22. Affected versions: bosh-windows-stemcell-builder versions prior to v2019.98.

Vendor: Cloud Foundry Foundation
Product: bosh-windows-stemcell-builder
Published: Jul 09, 2026
Source: NVD
CVE-2026-47830 HIGH - 8.8

Incorrect Permission Assignment in BOSH.Utils.psm1 in BOSH-Ecosystem bosh-windows-stemcell-builder allows low-privilege authenticated users to overwrite C:\bosh\service_wrapper.exe or C:\bosh\bosh-agent.exe and gain NT AUTHORITY\SYSTEM on the next service restart or reboot. This can lead to full hos...

Vendor: Cloud Foundry Foundation
Product: bosh-windows-stemcell-builder
Published: Jul 09, 2026
Source: NVD
CVE-2026-47829 HIGH - 8.3

Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the locally-spawned ssh process when an operator runs bosh ssh -c, bosh logs -f, or other non-interactive SSH paths, leading to local command execution on the operator's workstation. Affec...

Vendor: CloudFoundry Foundation
Product: bosh-cli
Published: Jul 09, 2026
Source: NVD
CVE-2026-47828 HIGH - 7.1

During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates to the new VM's DAV blobstore over HTTPS without verifying the server certificate, even though a CA certificate for that endpoint is available in the installation manifest. A network att...

Vendor: BOSH-Ecosystem / BOSH (bosh-cli)
Product: bosh-cli
Published: Jul 09, 2026
Source: NVD
CVE-2026-47826 HIGH - 8.8

The blobs.yml path key traversal vulnerability in the BOSH CLI tool allows an attacker to write arbitrary files and exfiltrate sensitive information. Affected versions: BOSH CLI tool versions prior to v7.10.4.

Vendor: CloudFoundry Foundation
Product: BOSH CLI tool
Published: Jul 09, 2026
Source: NVD
CVE-2026-12517 MEDIUM - 5.3

The Fediverse Embeds WordPress plugin before 1.5.8 does not validate the destination of the server-side request performed by an unauthenticated site-info endpoint before fetching it, allowing anonymous users (the gating nonce is exposed on public pages carrying an embed) to make the site request int...

Vendor: Unknown
Product: Fediverse Embeds
Published: Jul 09, 2026
Source: NVD
CVE-2026-12516 MEDIUM - 5.3

The Fediverse Embeds WordPress plugin before 1.5.8 does not validate the destination of the server-side request performed by an unauthenticated media-proxying endpoint, allowing anonymous users to make the site fetch arbitrary URLs, including internal and private-network addresses, and read back the...

Vendor: Unknown
Product: Fediverse Embeds
Published: Jul 09, 2026
Source: NVD
CVE-2026-12270 MEDIUM - 6.5

The Everest Forms WordPress plugin before 3.5.0 does not correctly restrict access to several REST API endpoints belonging to its onboarding assistant: the capability check is only applied when an attacker-controllable request header holds a specific value, so it can be bypassed by omitting or chan...

Vendor: Unknown
Product: Everest Forms
Published: Jul 09, 2026
Source: NVD
CVE-2026-11875 MEDIUM - 5.3

The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sign or verify its guest-session cookie, allowing unauthenticated attackers to forge it and impersonate any ticket owner (identified by email address) to read, reply to, and close that person's support tickets.

Vendor: Unknown
Product: WP Support Plus Responsive Ticket System
Published: Jul 09, 2026
Source: NVD
CVE-2026-11869 MEDIUM - 5.3

The WP DSGVO Tools (GDPR) WordPress plugin before 3.1.40 does not perform an authorization check on the immediate-processing path of its data subject access request feature, allowing unauthenticated attackers to generate and download the full personal-data export (including name, postal address, pho...

Vendor: Unknown
Product: WP DSGVO Tools (GDPR)
Published: Jul 09, 2026
Source: NVD
CVE-2026-11571 HIGH - 7.5

The Everest Forms WordPress plugin before 3.5.0 does not reliably delete temporary CSV files generated during email-notification processing and leaves them publicly accessible in the uploads directory, allowing unauthenticated attackers to retrieve other users' form submission records via pred...

Vendor: Unknown
Product: Everest Forms
Published: Jul 09, 2026
Source: NVD
CVE-2026-5523 HIGH - 8.8

The Divi Form Builder plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 5.1.8. This is due to the update_user() function accepting a user ID parameter from form submissions without verifying that the authenticated user has permission to edit that specific ...

Published: Jul 09, 2026
Source: NVD
CVE-2026-41857 HIGH - 7.8

A compromised or malicious BOSH Director can execute arbitrary shell commands on the operator's workstation when the operator runs bosh ssh (or bosh scp/bosh logs -f) with default flags. Affected versions: BOSH CLI versions prior to 7.10.5.

Vendor: CloudFoundry BOSH
Product: BOSH CLI
Published: Jul 09, 2026
Source: NVD
CVE-2026-15138 MEDIUM - 6.3

A security vulnerability has been detected in tumf mcp-text-editor up to 1.0.2. This issue affects the function _validate_file_path of the file mcp_text_editor/text_editor.py. Such manipulation of the argument file_path leads to path traversal. The attack can be launched remotely. The exploit has be...

Vendor: tumf
Product: mcp-text-editor
Published: Jul 09, 2026
Source: NVD
CVE-2026-47646 CRITICAL - 9.3

Improper neutralization of input during web page generation ('cross-site scripting') in Dynamics 365 Customer Voice allows an unauthorized attacker to perform spoofing over a network.

Vendor: microsoft
Product: dynamics_365_customer_voice
Published: Jul 09, 2026
Source: NVD