17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 14751-14800 of 17282 CVEs Page 296 of 346
CVE-2025-13536
Analyzed
8.8
WordPress Multiple Products

The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, an...

2025-11-28
CVE-2025-13526
Analyzed
7.5
WordPress Multiple Products

The OneClick Chat to Order plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1

2025-11-23
CVE-2025-13523
7.7
Mattermost Multiple Products

Mattermost Confluence plugin version <1

2026-02-07
CVE-2025-13516
Analyzed
8.1
WordPress Multiple Products

The SureMail – SMTP and Email Logs Plugin for WordPress is vulnerable to Unrestricted Upload of File with Dangerous Type in versions up to and includi...

2025-12-03
CVE-2025-13506
Analyzed
8.8
Nebim Neyir Computer Multiple Products

Execution with Unnecessary Privileges vulnerability in Nebim Neyir Computer Industry and Services Inc

2025-12-13
CVE-2025-13502
7.5
Unknown Multiple Products

A flaw was found in WebKitGTK and WPE WebKit

2025-11-26
CVE-2025-13499
7.8
Kafka Multiple Products

Kafka dissector crash in Wireshark 4

2025-11-22
CVE-2025-13493
Analyzed
7.5
WordPress Multiple Products

The Latest Registered Users plugin for WordPress is vulnerable to unauthorized user data export in all versions up to, and including, 1

2026-01-08
CVE-2025-13486
Analyzed
9.8
WordPress Multiple Products

The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to Remote Code Execution in versions 0.9.0.5 through 0.9.1.1 via the prepare_f...

2025-12-03
CVE-2025-13485
7.3
Unknown Multiple Products

A security flaw has been discovered in itsourcecode Online File Management System 1

2025-11-22
CVE-2025-13481
8.8
IBM Multiple Products

IBM Aspera Orchestrator 4

2025-12-12
CVE-2025-13479
Analyzed
7.5
PosCube Hardware Multiple Products

Authorization bypass through User-Controlled key vulnerability in PosCube Hardware Software and Consulting Ltd

2026-05-22
CVE-2025-13477
Analyzed
7.1
Digital Operations Multiple Products

Exposure of private personal information to an unauthorized actor, Insufficiently Protected Credentials vulnerability in Digital Operations Services I...

2026-05-22
CVE-2025-13474
7.5
Menulux Software Multiple Products

Authorization Bypass Through User-Controlled Key vulnerability in Menulux Software Inc

2025-12-17
CVE-2025-13470
7.5
RNP Multiple Products

In RNP version 0

2025-11-22
CVE-2025-13457
Analyzed
7.5
WordPress Multiple Products

The WooCommerce Square plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5

2026-01-10
CVE-2025-13455
7.8
Unknown Multiple Products

A vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to bypass ThinkPlus device authentication...

2026-01-16
CVE-2025-13451
7.3
Shop Multiple Products

A vulnerability was identified in SourceCodester Online Shop Project 1

2025-11-20
CVE-2025-13449
7.3
Shop Multiple Products

A vulnerability was found in code-projects Online Shop Project 1

2025-11-20
CVE-2025-13447
8.4
Unknown Multiple Products

OS Command Injection Remote Code Execution Vulnerability in API in Progress LoadMaster allows an authenticated attacker with “User Administration” per...

2026-01-14
CVE-2025-13446
8.8
Tenda Multiple Products

A vulnerability has been found in Tenda AC21 16

2025-11-20
CVE-2025-13445
8.8
Tenda Multiple Products

A flaw has been found in Tenda AC21 16

2025-11-20
CVE-2025-13444
8.4
Unknown Multiple Products

OS Command Injection Remote Code Execution Vulnerability in API in Progress LoadMaster allows an authenticated attacker with “User Administration” per...

2026-01-14
CVE-2025-13442
7.3
Unknown Multiple Products

A security vulnerability has been detected in UTT 进取 750W up to 3

2025-11-20
CVE-2025-13433
7
Group Multiple Products

A security flaw has been discovered in Muse Group MuseHub 2

2025-11-20
CVE-2025-13422
7.3
Unknown Multiple Products

A vulnerability was detected in freeprojectscodes Sports Club Management System 1

2025-11-20
CVE-2025-13421
7.3
Unknown Multiple Products

A security vulnerability has been detected in itsourcecode Human Resource Management System 1

2025-11-20
CVE-2025-13420
7.3
Unknown Multiple Products

A weakness has been identified in itsourcecode Human Resource Management System 1

2025-11-20
CVE-2025-13417
Analyzed
8.6
WordPress Multiple Products

The Plugin Organizer WordPress plugin before 10

2025-12-30
CVE-2025-13410
7.3
Online Multiple Products

A vulnerability has been found in Campcodes Retro Basketball Shoes Online Store 1

2025-11-20
CVE-2025-13400
Analyzed
8.8
Tenda Multiple Products

A vulnerability was detected in Tenda CH22 1

2025-11-20
CVE-2025-13395
7.3
Unknown Multiple Products

A security flaw has been discovered in codehub666 94list up to 5831c8240e99a72b7d3508c79ef46ae4b96befe8

2025-11-20
CVE-2025-13390
Analyzed
10
WordPress Multiple Products

The WP Directory Kit plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.4.4 due to incorrect implemen...

2025-12-03
CVE-2025-13387
Analyzed
7.2
WordPress Multiple Products

The Kadence WooCommerce Email Designer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the customer name in all versions up to,...

2025-12-03
CVE-2025-13384
Analyzed
7.5
WordPress Multiple Products

The CP Contact Form with PayPal plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1

2025-11-23
CVE-2025-13379
8.6
IBM Aspera Console

IBM Aspera Console 3

2026-02-06
CVE-2025-13376
Analyzed
7.2
WordPress Multiple Products

The ProjectList plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including,...

2025-11-26
CVE-2025-13375
Analyzed
9.8
IBM Common Cryptographic

IBM Common Cryptographic Architecture (CCA) contains a flaw allowing unauthenticated users to execute arbitrary commands with elevated privileges. Pat...

2026-02-05
CVE-2025-13374
Analyzed
9.8
WordPress Multiple Products

The Kalrav AI Agent plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the kalrav_upload_file AJAX ac...

2026-01-24
CVE-2025-13373
7.5
Unknown Multiple Products

Advantech iView versions 5

2025-12-05
CVE-2025-13371
Analyzed
8.6
WordPress Multiple Products

The MoneySpace plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2

2026-01-08
CVE-2025-13357
Analyzed
7.4
Unknown Multiple Products

Vault’s Terraform Provider incorrectly set the default deny_null_bind parameter for the LDAP auth method to false by default, potentially resulting in...

2025-11-22
CVE-2025-13355
Analyzed
7.1
WordPress Multiple Products

The URL Shortify WordPress plugin before 1

2025-12-16
CVE-2025-13344
7.3
Ticketing Multiple Products

A weakness has been identified in SourceCodester Train Station Ticketing System 1

2025-11-19
CVE-2025-13342
Analyzed
9.8
WordPress Multiple Products

The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to unauthorized modification of arbitrary WordPress options in all versions up to,...

2025-12-03
CVE-2025-13339
Analyzed
7.5
WordPress Multiple Products

The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1

2025-12-12
CVE-2025-13334
Analyzed
8.1
WordPress Multiple Products

The Blaze Demo Importer plugin for WordPress is vulnerable to unauthorized database resets and file deletion due to a missing capability check on the...

2025-12-13
CVE-2025-13329
Analyzed
9.8
WordPress Multiple Products

The File Uploader for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the callback fun...

2025-12-20
CVE-2025-13323
7.3
Unknown Multiple Products

A security flaw has been discovered in code-projects Simple Pizza Ordering System 1

2025-11-19
CVE-2025-13322
Analyzed
8.1
WordPress Multiple Products

The WP AUDIO GALLERY plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in all versions up to, and...

2025-11-22