Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
Assigner (CNA / source):[email protected] Remove this filter
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2026-56043 | Unauthenticated Cross Site Scripting (XSS) in Customer Reviews for WooCommerce <= 5.110.1 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56041 | Unauthenticated Cross Site Scripting (XSS) in Responsive Lightbox <= 2.7.6 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-29 |
| CVE-2026-56040 | Unauthenticated Cross Site Scripting (XSS) in Gutenverse Form <= 2.4.7 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56039 | Unauthenticated Cross Site Scripting (XSS) in Quick Interest Slider <= 3.1.6 versions. | 7.1 | 0.18% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56038 | Contributor Privilege Escalation in Frisbii Pay <= 1.8.2 versions. | 8.8 | 0.23% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56036 | Unauthenticated SQL Injection in 워드프레스 결제 심플페이 <= 5.5.6 versions. | 9.3 | 0.24% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56035 | Unauthenticated Multiple Vulnerabilities in BitFire Security <= 5.0.3 versions. | 8.6 | 0.27% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56034 | Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions. | 9.3 | 0.29% | 2026-06-26 | 2026-06-29 |
| CVE-2026-56033 | Unauthenticated Privilege Escalation in Dokan Pro <= 5.0.4 versions. | 9.8 | 0.33% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56032 | Subscriber PHP Object Injection in Buddyboss Platform <= 3.0.4 versions. | 9.8 | 0.53% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56031 | Unauthenticated PHP Object Injection in Uncanny Automator <= 7.3.1.2 versions. | 8.1 | 0.32% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56030 | Unauthenticated Privilege Escalation in Paytium <= 5.0.2 versions. | 9.8 | 0.33% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56029 | Unauthenticated Broken Authentication in CorvusPay WooCommerce Payment Gateway <= 2.7.4 versions. | 7.5 | 0.29% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56028 | Unauthenticated Privilege Escalation in Easy Elements for Elementor – Addons & Website Templates <= 1.4.9 versions. | 9.8 | 0.36% | 2026-06-26 | 2026-06-29 |
| CVE-2026-56027 | Customer Arbitrary File Upload in Booster for WooCommerce <= 8.0.1 versions. | 9.9 | 0.33% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56025 | Unauthenticated Broken Access Control in Paymob for WooCommerce <= 4.1.2 versions. | 7.5 | 0.24% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56011 | Unauthenticated Cross Site Scripting (XSS) in MapPress Maps for WordPress <= 2.97.3 versions. | 7.1 | 0.24% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56010 | Subscriber Privilege Escalation in Abandoned Cart Pro for WooCommerce <= 10.4.0 versions. | 8.8 | 0.38% | 2026-06-26 | 2026-06-26 |
| CVE-2026-56008 | Contributor Privilege Escalation in Fusion Builder <= 3.15.4 versions. | 8.8 | 0.28% | 2026-06-26 | 2026-06-29 |
| CVE-2026-54847 | Unauthenticated Broken Access Control in Stylish Cost Calculator <= 8.3.9 versions. | 7.5 | 0.28% | 2026-06-26 | 2026-06-26 |