Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
Assigner (CNA / source):[email protected] Remove this filter
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2026-57667 | Sales Representative SQL Injection in Groundhogg <= 4.5 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57665 | Unauthenticated Insecure Direct Object References (IDOR) in GravityView <= 3.0.0 versions. | 5.3 | 0.19% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57664 | Unauthenticated Sensitive Data Exposure in Bopo – WooCommerce Product Bundle Builder <= 1.1.6 versions. | 4.3 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57663 | Contributor SQL Injection in Recipe Maker For Your Food Blog from Zip Recipes <= 8.2.7 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57662 | Contributor SQL Injection in Contest Gallery <= 30.0.0 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57661 | Subscriber Broken Access Control in WPComplete <= 2.9.5.5 versions. | 5.4 | 0.22% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57660 | Unauthenticated Broken Access Control in Booking and Rental Manager <= 2.7.1 versions. | 5.3 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57659 | Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin <= 0.7.2 versions. | 8.8 | 0.13% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57658 | Administrator Arbitrary File Upload in TemplateSpare <= 4.2.0 versions. | 9.1 | 0.28% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57657 | Unauthenticated Cross Site Request Forgery (CSRF) in Gmail SMTP <= 1.2.3.19 versions. | 4.3 | 0.10% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57656 | Author Cross Site Scripting (XSS) in Hester Core <= 1.1.8 versions. | 5.9 | 0.14% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57655 | Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard <= 1.4 versions. | 8.2 | 0.11% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57654 | Affiliate Broken Access Control in Affiliates Manager <= 2.9.49 versions. | 6.5 | 0.17% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57653 | Contributor SQL Injection in WP Job Portal <= 2.5.2 versions. | 8.5 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57652 | Unauthenticated Insecure Direct Object References (IDOR) in JS Help Desk <= 3.1.0 versions. | 5.3 | 0.19% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57651 | Contributor Cross Site Scripting (XSS) in Ghost Kit <= 3.6.0 versions. | 6.5 | 0.13% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57650 | Contributor Cross Site Scripting (XSS) in Magazine Blocks <= 1.8.3 versions. | 6.5 | 0.13% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57649 | Subscriber Broken Access Control in Shoppable Images Lite <= 1.3 versions. | 4.3 | 0.21% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57648 | Contributor Broken Access Control in Nelio Content <= 4.3.4 versions. | 4.3 | 0.15% | 2026-06-26 | 2026-06-26 |
| CVE-2026-57647 | Contributor Local File Inclusion in Panorama Viewer – 360 Degree Image + Video Viewer <= 1.6.1 versions. | 7.5 | 0.26% | 2026-06-26 | 2026-06-26 |