17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 10051-10100 of 17282 CVEs Page 202 of 346
CVE-2025-63074
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Dream-Theme The7 dt-the7 allo...

2025-12-11
CVE-2025-63062
Analyzed
7.6
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in AndonDesign UDesign Core u-de...

2025-12-11
CVE-2025-63057
8.2
Roxnor Wp Ultimate Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Roxnor Wp Ultimate Review wp-ultimate-review all...

2025-12-10
CVE-2025-63036
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in DFDevelopment Ronneby Theme C...

2025-12-11
CVE-2025-63029
7.6
WC Lovers WCFM Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WC Lovers WCFM Marketplace allows SQL Injection

2026-04-17
CVE-2025-6302
Analyzed
8.8
TOTOLINK EX1200T

A vulnerability, which was classified as critical, was found in TOTOLINK EX1200T 4

2026-06-19
CVE-2025-63003
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in fuelthemes North - Required P...

2025-12-11
CVE-2025-62986
7.1
FanBridge FanBridge Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in FanBridge FanBridge signup fanbridge-signup allows Stored XSS

2025-10-27
CVE-2025-62980
Analyzed
8.8
MDZ Persian Admnin Multiple Products

Missing Authorization vulnerability in MDZ Persian Admnin Fonts persian-admin-fonts allows Exploiting Incorrectly Configured Access Control Security L...

2025-10-27
CVE-2025-6297
8.2
Unknown Multiple Products

It was discovered that dpkg-deb does not properly sanitize directory permissions when extracting a control member into a temporary directory, which is...

2025-07-06
CVE-2025-62965
7.2
Unknown Multiple Products

Missing Authorization vulnerability in wpseek Admin Management Xtended admin-management-xtended allows Exploiting Incorrectly Configured Access Contr...

2025-10-27
CVE-2025-62964
8.1
Unknown Multiple Products

Missing Authorization vulnerability in RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter allows Exploiting Incorrectly Configured Access Control...

2025-10-27
CVE-2025-62962
Analyzed
8.8
Andrea Landonio Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in Andrea Landonio CloudSearch cloud-search allows Stored XSS

2025-10-27
CVE-2025-62959
Analyzed
9.1
HP Multiple Products

Improper Control of Generation of Code ('Code Injection') vulnerability in videowhisper Paid Videochat Turnkey Site ppv-live-webcams allows Remote Cod...

2025-10-27
CVE-2025-62958
Analyzed
8.8
Clifton Griffin Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in Clifton Griffin Simple Content Templates for Blog Posts & Pages simple-post-template allows Cro...

2025-10-27
CVE-2025-62957
Analyzed
8.8
WordPress Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in NikanWP NikanWP WooCommerce Reporting wc-reports-lite allows Stored XSS

2025-10-28
CVE-2025-62956
8.8
Unknown Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in iseremet Reloadly reloadly-topup-widget allows Stored XSS

2025-10-28
CVE-2025-62954
8.8
Unknown Multiple Products

Missing Authorization vulnerability in Codeinwp Revive Old Posts tweet-old-post allows Exploiting Incorrectly Configured Access Control Security Level...

2025-10-28
CVE-2025-62953
8.8
Unknown Multiple Products

Missing Authorization vulnerability in nanbu Welcart e-Commerce usc-e-shop allows Exploiting Incorrectly Configured Access Control Security Levels

2025-10-28
CVE-2025-62952
8.8
QuantumCloud ChatBot Multiple Products

Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels

2025-10-28
CVE-2025-62947
7.5
Unknown Multiple Products

Insertion of Sensitive Information Into Sent Data vulnerability in publitio Publitio publitio allows Retrieve Embedded Sensitive Data

2025-10-28
CVE-2025-62946
8.8
Unknown Multiple Products

Missing Authorization vulnerability in everestthemes Everest Backup everest-backup allows Exploiting Incorrectly Configured Access Control Security Le...

2025-10-28
CVE-2025-62945
8.8
Eduard Pinuaga Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in Eduard Pinuaga Linares Did Prestashop Display did-prestashop-display allows Stored XSS

2025-10-28
CVE-2025-62944
Analyzed
9.8
Intel Multiple Products

Missing Authorization vulnerability in Mark O'Donnell MSTW CSV EXPORTER mstw-csv-exporter allows Exploiting Incorrectly Configured Access Control Secu...

2025-10-28
CVE-2025-62938
8.1
Reoon Technology Multiple Products

Missing Authorization vulnerability in Reoon Technology Reoon Email Verifier reoon-email-verifier allows Exploiting Incorrectly Configured Access Cont...

2025-10-28
CVE-2025-62935
Analyzed
8.1
Unknown Multiple Products

Missing Authorization vulnerability in ilmosys Open Close WooCommerce Store woc-open-close allows Exploiting Incorrectly Configured Access Control Sec...

2025-10-28
CVE-2025-62934
8.8
Mejar WP Business Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in Mejar WP Business Hours wp-business-hours allows Stored XSS

2025-10-28
CVE-2025-62933
8.8
Prakash Awesome Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in Prakash Awesome Testimonials awesome-testimonials allows Stored XSS

2025-10-28
CVE-2025-62932
8.8
Unknown Multiple Products

Missing Authorization vulnerability in wprio Table Block by RioVizual riovizual allows Exploiting Incorrectly Configured Access Control Security Level...

2025-10-28
CVE-2025-62931
Analyzed
8.8
Microsoft Multiple Products

Missing Authorization vulnerability in microsoftstart MSN Partner Hub microsoft-start allows Exploiting Incorrectly Configured Access Control Security...

2025-10-28
CVE-2025-62929
8.8
PickPlugins Multiple Products

Missing Authorization vulnerability in PickPlugins Testimonial Slider testimonial allows Exploiting Incorrectly Configured Access Control Security Lev...

2025-10-28
CVE-2025-62928
8.1
Joby Joseph SEO Meta Multiple Products

Missing Authorization vulnerability in Joby Joseph SEO Meta Description Updater seo-meta-description-updater allows Exploiting Incorrectly Configured...

2025-10-28
CVE-2025-62927
8.1
Nelio Software Nelio Multiple Products

Missing Authorization vulnerability in Nelio Software Nelio Content nelio-content allows Exploiting Incorrectly Configured Access Control Security Lev...

2025-10-28
CVE-2025-62925
Analyzed
8.1
Unknown Multiple Products

Missing Authorization vulnerability in Conversios Conversios

2025-10-28
CVE-2025-62924
8.8
Unknown Multiple Products

Missing Authorization vulnerability in PickPlugins Post Grid and Gutenberg Blocks post-grid allows Exploiting Incorrectly Configured Access Control Se...

2025-10-28
CVE-2025-62922
8.1
Shambhu Patnaik Multiple Products

Missing Authorization vulnerability in Shambhu Patnaik Export Categories export-categories allows Accessing Functionality Not Properly Constrained by...

2025-10-28
CVE-2025-6292
Analyzed
8.8
D-Link DIR-825

A vulnerability has been found in D-Link DIR-825 2

2026-06-19
CVE-2025-62919
Analyzed
9.1
Unknown Multiple Products

Missing Authorization vulnerability in themeshopy TS Demo Importer ts-demo-importer allows Exploiting Incorrectly Configured Access Control Security L...

2025-10-28
CVE-2025-62918
8.8
Unknown Multiple Products

Missing Authorization vulnerability in ignitionwp IgnitionDeck ignitiondeck allows Exploiting Incorrectly Configured Access Control Security Levels

2025-10-28
CVE-2025-62916
8.8
Unknown Multiple Products

Missing Authorization vulnerability in adivaha® Flights & Hotels Booking WP Plugin adiaha-hotel allows Exploiting Incorrectly Configured Access Co...

2025-10-28
CVE-2025-62915
Analyzed
8.1
Unknown Multiple Products

Missing Authorization vulnerability in clicksend SMS Contact Form 7 Notifications by ClickSend clicksend-contactform7 allows Exploiting Incorrectly Co...

2025-10-28
CVE-2025-6291
Analyzed
8.8
D-Link DIR-825

A vulnerability, which was classified as critical, was found in D-Link DIR-825 2

2026-06-19
CVE-2025-62909
8.1
Unknown Multiple Products

Missing Authorization vulnerability in mrityunjay Smart WeTransfer smart-wetransfer allows Exploiting Incorrectly Configured Access Control Security L...

2025-10-28
CVE-2025-62908
Analyzed
9.8
Unknown Multiple Products

Missing Authorization vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Accessing Functionality Not Properly Constrained by...

2025-10-28
CVE-2025-62906
Analyzed
9.8
Unknown Multiple Products

Missing Authorization vulnerability in epiphanyit321 Referral Link Tracker referral-link-tracker allows Exploiting Incorrectly Configured Access Contr...

2025-10-28
CVE-2025-62902
7.5
ThemeHunk WP Popup Multiple Products

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ThemeHunk WP Popup Builder wp-popup-builder allows Retriev...

2025-10-28
CVE-2025-62896
8.8
Unknown Multiple Products

Cross-Site Request Forgery (CSRF) vulnerability in digitaldonkey Multilang Contact Form multilang-contact-form allows Stored XSS

2025-10-28
CVE-2025-62895
7.5
Vito Peleg Atarim Multiple Products

Insertion of Sensitive Information Into Sent Data vulnerability in Vito Peleg Atarim atarim-visual-collaboration allows Retrieve Embedded Sensitive Da...

2025-10-28
CVE-2025-62893
8.1
Unknown Multiple Products

Authorization Bypass Through User-Controlled Key vulnerability in mediavine Create by Mediavine mediavine-create allows Exploiting Incorrectly Configu...

2025-10-28
CVE-2025-62892
Analyzed
9.1
Unknown Multiple Products

Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Accessing Functionality Not Properly Constrain...

2025-10-28