CVE List – Find High-Risk & Exploited Vulnerabilities

Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.

Assigner (CNA / source):[email protected] Remove this filter

Showing 120 of 10773 results
«« First « Prev Page 1 / 539 Next »
CVE Description Max CVSS EPSS % Published Updated
CVE-2026-57766 Unauthenticated Cross Site Request Forgery (CSRF) in WPIDE – File Manager & Code Editor <= 3.5.6 versions. 8.8 N/A 2026-07-02 2026-07-02
CVE-2026-57765 Contributor SQL Injection in WP EasyCart <= 5.9.0 versions. 8.5 N/A 2026-07-02 2026-07-02
CVE-2026-57759 Unauthenticated Cross Site Request Forgery (CSRF) in ProfileGrid <= 5.9.9.7 versions. 8.8 N/A 2026-07-02 2026-07-02
CVE-2026-57758 Unauthenticated Cross Site Request Forgery (CSRF) in Permalink Manager for WooCommerce <= 1.0.8.2 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57752 Contributor SQL Injection in iNET Webkit 1.2.4 versions. 8.5 N/A 2026-07-02 2026-07-02
CVE-2026-57747 Unauthenticated Cross Site Request Forgery (CSRF) in Booked <= 3.0.0 versions. 6.5 N/A 2026-07-02 2026-07-02
CVE-2026-57746 Subscriber Broken Access Control in Booked <= 3.0.0 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57688 Unauthenticated Broken Access Control in POS Entegratör <= 3.7.103 versions. 8.2 N/A 2026-07-02 2026-07-02
CVE-2026-57687 Contributor SQL Injection in Custom Field Template <= 2.7.8 versions. 8.5 N/A 2026-07-02 2026-07-02
CVE-2026-57682 Unauthenticated Cross Site Scripting (XSS) in Simple Link Directory <= 15.0.5 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57681 Subscriber Server Side Request Forgery (SSRF) in GeoDirectory <= 2.8.161 versions. 6.4 N/A 2026-07-02 2026-07-02
CVE-2026-57674 Unauthenticated Cross Site Scripting (XSS) in Timetics <= 1.0.58 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57673 Unauthenticated Cross Site Scripting (XSS) in Optimole <= 4.2.7 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57625 Unauthenticated Cross Site Scripting (XSS) in Admin and Site Enhancements (ASE) Pro <= 8.8.5 versions. 9.6 N/A 2026-07-02 2026-07-02
CVE-2026-57624 Unauthenticated Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.46 versions. 10.0 N/A 2026-07-02 2026-07-02
CVE-2026-57362 Unauthenticated Cross Site Scripting (XSS) in ChatBot <= 8.3.2 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57361 Unauthenticated Cross Site Scripting (XSS) in Survey Maker <= 5.2.2.5 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57356 Unauthenticated Cross Site Scripting (XSS) in MC Woocommerce Wishlist <= 1.9.19 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57350 Unauthenticated Cross Site Scripting (XSS) in WP Debugging <= 2.12.2 versions. 7.1 N/A 2026-07-02 2026-07-02
CVE-2026-57343 Unauthenticated Cross Site Scripting (XSS) in Real Estate 7 <= 3.5.9 versions. 7.1 N/A 2026-07-02 2026-07-02
«« First « Prev Page 1 / 539 Next »
cvelogic Threat Intelligence