Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
Assigner (CNA / source):[email protected] Remove this filter
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2026-57766 | Unauthenticated Cross Site Request Forgery (CSRF) in WPIDE – File Manager & Code Editor <= 3.5.6 versions. | 8.8 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57765 | Contributor SQL Injection in WP EasyCart <= 5.9.0 versions. | 8.5 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57759 | Unauthenticated Cross Site Request Forgery (CSRF) in ProfileGrid <= 5.9.9.7 versions. | 8.8 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57758 | Unauthenticated Cross Site Request Forgery (CSRF) in Permalink Manager for WooCommerce <= 1.0.8.2 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57752 | Contributor SQL Injection in iNET Webkit 1.2.4 versions. | 8.5 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57747 | Unauthenticated Cross Site Request Forgery (CSRF) in Booked <= 3.0.0 versions. | 6.5 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57746 | Subscriber Broken Access Control in Booked <= 3.0.0 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57688 | Unauthenticated Broken Access Control in POS Entegratör <= 3.7.103 versions. | 8.2 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57687 | Contributor SQL Injection in Custom Field Template <= 2.7.8 versions. | 8.5 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57682 | Unauthenticated Cross Site Scripting (XSS) in Simple Link Directory <= 15.0.5 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57681 | Subscriber Server Side Request Forgery (SSRF) in GeoDirectory <= 2.8.161 versions. | 6.4 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57674 | Unauthenticated Cross Site Scripting (XSS) in Timetics <= 1.0.58 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57673 | Unauthenticated Cross Site Scripting (XSS) in Optimole <= 4.2.7 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57625 | Unauthenticated Cross Site Scripting (XSS) in Admin and Site Enhancements (ASE) Pro <= 8.8.5 versions. | 9.6 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57624 | Unauthenticated Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.46 versions. | 10.0 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57362 | Unauthenticated Cross Site Scripting (XSS) in ChatBot <= 8.3.2 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57361 | Unauthenticated Cross Site Scripting (XSS) in Survey Maker <= 5.2.2.5 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57356 | Unauthenticated Cross Site Scripting (XSS) in MC Woocommerce Wishlist <= 1.9.19 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57350 | Unauthenticated Cross Site Scripting (XSS) in WP Debugging <= 2.12.2 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |
| CVE-2026-57343 | Unauthenticated Cross Site Scripting (XSS) in Real Estate 7 <= 3.5.9 versions. | 7.1 | N/A | 2026-07-02 | 2026-07-02 |