CVE List – Find High-Risk & Exploited Vulnerabilities

Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.

Assigner (CNA / source):[email protected] Remove this filter

Showing 2140 of 1205 results
«« First « Prev Page 2 / 61 Next »
CVE Description Max CVSS EPSS % Published Updated
CVE-2026-56034 Unauthenticated SQL Injection in Library Management System <= 3.5.7 versions. 9.3 0.29% 2026-06-26 2026-06-29
CVE-2026-56033 Unauthenticated Privilege Escalation in Dokan Pro <= 5.0.4 versions. 9.8 0.33% 2026-06-26 2026-06-26
CVE-2026-56032 Subscriber PHP Object Injection in Buddyboss Platform <= 3.0.4 versions. 9.8 0.53% 2026-06-26 2026-06-26
CVE-2026-56030 Unauthenticated Privilege Escalation in Paytium <= 5.0.2 versions. 9.8 0.33% 2026-06-26 2026-06-26
CVE-2026-56028 Unauthenticated Privilege Escalation in Easy Elements for Elementor &#8211; Addons &amp; Website Templates <= 1.4.9 versions. 9.8 0.36% 2026-06-26 2026-06-29
CVE-2026-56027 Customer Arbitrary File Upload in Booster for WooCommerce <= 8.0.1 versions. 9.9 0.33% 2026-06-26 2026-06-26
CVE-2026-54831 Unauthenticated SQL Injection in GeoDirectory <= 2.8.162 versions. 9.3 0.28% 2026-06-26 2026-06-26
CVE-2026-54827 Unauthenticated SQL Injection in Real Estate 7 <= 3.5.9 versions. 9.3 0.28% 2026-06-26 2026-06-26
CVE-2026-54825 Unauthenticated SQL Injection in wpDataTables <= 7.4 versions. 9.3 0.28% 2026-06-26 2026-06-26
CVE-2026-54820 Unauthenticated SQL Injection in JetBooking <= 4.0.4.1 versions. 9.3 0.28% 2026-06-26 2026-06-26
CVE-2026-57700 Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files. This issue affects OMGF Pro: from n/a through 5.2.6. 10.0 0.37% 2026-06-25 2026-06-29
CVE-2026-54849 Unauthenticated SQL Injection in Premmerce Wishlist for WooCommerce <= 1.1.11 versions. 9.3 0.23% 2026-06-25 2026-06-25
CVE-2026-54843 Unauthenticated SQL Injection in MDTF <= 1.3.7 versions. 9.3 0.23% 2026-06-25 2026-06-25
CVE-2026-54836 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YMC Filter allows SQL Injection. This issue affects YMC Filter: from n/a through 3.11.5. 9.3 0.23% 2026-06-25 2026-06-25
CVE-2026-54823 Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions. 9.9 0.43% 2026-06-25 2026-06-25
CVE-2026-54812 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes Motors allows Blind SQL Injection. This issue affects Motors: from n/a through 1.4.109. 9.3 0.29% 2026-06-17 2026-06-17
CVE-2026-54819 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Webilia Inc. Listdom allows Blind SQL Injection. This issue affects Listdom: from n/a through 5.4.0. 9.3 0.24% 2026-06-17 2026-06-17
CVE-2026-54815 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cargo RD Cargo Shipping Location for WooCommerce allows Blind SQL Injection. This issue affects Cargo Shipping Location for WooCommerce: from n/a through 5.6. 9.3 0.24% 2026-06-17 2026-06-17
CVE-2026-54809 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VillaTheme GIFT4U allows Blind SQL Injection. This issue affects GIFT4U: from n/a through 1.0.10. 9.3 0.24% 2026-06-17 2026-06-17
CVE-2026-54808 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Travel WP Travel Gutenberg Blocks allows Blind SQL Injection. This issue affects WP Travel Gutenberg Blocks: from n/a through 3.9.4. 9.3 0.32% 2026-06-17 2026-06-17
«« First « Prev Page 2 / 61 Next »
cvelogic Threat Intelligence