Skip to main content
CVE-2026-23887 MEDIUM POC PATCH This Month

Stored XSS in Group-Office through unsanitized filenames allows authenticated users to inject malicious scripts that execute when other users view affected files, potentially compromising sessions or triggering unintended browser actions. The vulnerability affects versions 6.8.148 and below, and 25.0.1 through 25.0.79, with public exploit code available. Patches are available in versions 6.8.149 and 25.0.80.

XSS Group Office
NVD GitHub
CVSS 3.1
5.4
EPSS
0.1%
CVE-2026-24034 MEDIUM POC This Month

Horilla versions up to 1.5.0 is affected by unrestricted upload of file with dangerous type (CVSS 5.4).

XSS Horilla
NVD GitHub
CVSS 3.1
5.4
EPSS
0.0%
CVE-2026-24307 CRITICAL PATCH Act Now

M365 Copilot has an input validation vulnerability allowing unauthorized attackers to extract sensitive information through crafted prompts over the network.

Information Disclosure 365 Copilot
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2026-24036 MEDIUM POC PATCH This Month

Horilla HRMS versions 1.4.0 and above allow unauthenticated access to unpublished job postings through the /recruitment/recruitment-details/ endpoint, exposing draft job titles, descriptions, and application workflows. An attacker can leverage public exploit code to view sensitive internal hiring information and access recruitment processes for unpublished positions. The vulnerability affects all users with network access to affected Horilla instances and has been patched in version 1.5.0.

Authentication Bypass Horilla
NVD GitHub
CVSS 3.1
5.3
EPSS
0.1%
CVE-2026-24305 CRITICAL PATCH Act Now

Azure Entra ID (formerly Azure AD) has an elevation of privilege vulnerability allowing attackers to escalate permissions within the identity platform.

Azure Entra Id
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2026-1325 MEDIUM POC This Month

Operation And Maintenance Security Management System versions up to 3.0.12. is affected by weak password recovery mechanism for forgotten password (CVSS 5.3).

Information Disclosure Operation And Maintenance Security Management System
NVD GitHub VulDB
CVSS 3.1
5.3
EPSS
0.1%
CVE-2025-68034 CRITICAL Act Now

CleverReach WordPress plugin has a SQL injection vulnerability allowing attackers to extract email marketing data and WordPress credentials from the database.

SQLi
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2025-67945 CRITICAL Act Now

MailerLite WordPress plugin has a SQL injection vulnerability enabling attackers to extract sensitive data from the WordPress database.

WordPress SQLi
NVD
CVSS 3.1
9.3
EPSS
0.1%
CVE-2026-21264 CRITICAL PATCH Act Now

Microsoft Account has a cross-site scripting vulnerability allowing unauthenticated attackers to execute scripts in the context of Microsoft Account pages.

Microsoft XSS Account
NVD
CVSS 3.1
9.3
EPSS
0.0%
CVE-2025-49055 CRITICAL Act Now

WP Learn SQL Injection allows unauthenticated attackers to execute arbitrary SQL queries against the WordPress database, exposing all stored data.

SQLi
NVD
CVSS 3.1
9.3
EPSS
0.0%
CVE-2025-68857 CRITICAL Act Now

Paid Downloads WordPress plugin has a SQL injection vulnerability enabling database compromise through the download management functionality.

SQLi
NVD
CVSS 3.1
9.3
EPSS
0.0%
CVE-2026-24055 MEDIUM POC PATCH This Month

Langfuse versions 3.146.0 and below allow unauthenticated attackers to hijack Slack OAuth integrations by injecting arbitrary projectIds into the /api/public/slack/install endpoint, enabling them to bind malicious Slack workspaces to any project and intercept prompt management data. An attacker can replace existing Prompt Slack Automations or pre-register malicious integrations that execute when authenticated users unknowingly configure them. Public exploit code exists for this vulnerability, which affects the DNS and AI/ML components of the Langfuse platform.

DNS AI / ML Langfuse
NVD GitHub
CVSS 3.1
5.3
EPSS
0.0%
CVE-2025-67944 CRITICAL Act Now

Nelio AB Testing WordPress plugin has a code injection vulnerability allowing attackers to execute arbitrary code through the A/B testing functionality.

Code Injection RCE
NVD
CVSS 3.1
9.1
EPSS
0.1%
CVE-2025-69312 CRITICAL Act Now

Xpro Elementor Addons WordPress plugin has an unrestricted file upload allowing attackers to upload dangerous file types through the Elementor builder integration.

File Upload
NVD
CVSS 3.1
9.1
EPSS
0.1%
CVE-2026-20912 CRITICAL PATCH Act Now

Gitea fails to validate repository ownership when linking attachments to releases, allowing users to attach files from one repository to releases in another.

Authentication Bypass Gitea
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-20897 CRITICAL PATCH Act Now

Gitea fails to validate repository ownership when deleting Git LFS locks, allowing users with write access to one repo to delete LFS locks in other repositories.

Authentication Bypass Gitea
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-20750 CRITICAL PATCH Act Now

Gitea does not properly validate project ownership in organization operations, allowing users with project write access to manipulate projects belonging to other organizations.

Authentication Bypass Gitea
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-23966 CRITICAL PATCH Act Now

The sm-crypto JavaScript library has a private key recovery vulnerability in its SM2 implementation, allowing attackers to extract secret keys from signatures.

Authentication Bypass Sm Crypto
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%
CVE-2025-68015 CRITICAL Act Now

Event Tickets with Ticket Scanner WordPress plugin has a code injection vulnerability allowing remote code execution through the event management system.

Code Injection RCE
NVD
CVSS 3.1
9.0
EPSS
0.1%
CVE-2026-24002 CRITICAL PATCH Act Now

Grist spreadsheet software has an injection vulnerability in Python formula execution that allows authenticated users to escape the formula sandbox and execute arbitrary code.

Python AI / ML Grist Core
NVD GitHub
CVSS 3.1
9.0
EPSS
0.0%
CVE-2025-36588 HIGH This Week

Dell Unisphere for PowerMax, version(s) 10.2.0.x, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution. [CVSS 8.8 HIGH]

SQLi Unisphere For Powermax Virtual Appliance Unisphere For Powermax
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69099 HIGH This Week

Deserialization of Untrusted Data vulnerability in fuelthemes North north-wp allows Object Injection.This issue affects North: from n/a through <= 5.7.5. [CVSS 8.8 HIGH]

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69036 HIGH This Week

strongholdthemes Tech Life CPT techlife-cpt is affected by deserialization of untrusted data (CVSS 8.8).

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69035 HIGH This Week

strongholdthemes Dental Care CPT dentalcare-cpt is affected by deserialization of untrusted data (CVSS 8.8).

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69002 HIGH This Week

Deserialization of Untrusted Data vulnerability in designthemes OneLife onelife allows Object Injection.This issue affects OneLife: from n/a through <= 3.9. [CVSS 8.8 HIGH]

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-68903 HIGH This Week

Deserialization of Untrusted Data vulnerability in AivahThemes Anona anona allows Object Injection.This issue affects Anona: from n/a through <= 8.0. [CVSS 8.8 HIGH]

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-68899 HIGH This Week

Deserialization of Untrusted Data vulnerability in designthemes Vivagh vivagh allows Object Injection.This issue affects Vivagh: from n/a through <= 2.4. [CVSS 8.8 HIGH]

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-68047 HIGH This Week

Deserialization of Untrusted Data vulnerability in Arraytics Eventin wp-event-solution allows Object Injection.This issue affects Eventin: from n/a through <= 4.1.1. [CVSS 8.8 HIGH]

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-67619 HIGH This Week

Deserialization of Untrusted Data vulnerability in designthemes Kids Heaven kids-world allows Object Injection.This issue affects Kids Heaven: from n/a through <= 3.2. [CVSS 8.8 HIGH]

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69293 HIGH This Week

Incorrect Privilege Assignment vulnerability in e-plugins Final User final-user allows Privilege Escalation.This issue affects Final User: from n/a through <= 1.2.5. [CVSS 8.8 HIGH]

Privilege Escalation
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69292 HIGH This Week

Incorrect Privilege Assignment vulnerability in e-plugins WP Membership wp-membership allows Privilege Escalation.This issue affects WP Membership: from n/a through <= 1.6.4. [CVSS 8.8 HIGH]

WordPress Privilege Escalation PHP
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69183 HIGH This Week

e-plugins Hospital Doctor Directory hospital-doctor-directory contains a security vulnerability (CVSS 8.8).

Privilege Escalation
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-69182 HIGH This Week

e-plugins Institutions Directory institutions-directory contains a security vulnerability (CVSS 8.8).

Privilege Escalation
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-67966 HIGH This Week

Incorrect Privilege Assignment vulnerability in e-plugins Lawyer Directory lawyer-directory allows Privilege Escalation.This issue affects Lawyer Directory: from n/a through <= 1.3.3. [CVSS 8.8 HIGH]

Privilege Escalation
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-50007 HIGH This Week

Incorrect Privilege Assignment vulnerability in Jthemes xSmart xsmart allows Privilege Escalation.This issue affects xSmart: from n/a through <= 1.2.9.4. [CVSS 8.8 HIGH]

Privilege Escalation
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-66428 HIGH This Week

An issue with WordPress directory names in WebPros WordPress Toolkit versions up to 6.9.1 is affected by path traversal (CVSS 8.8).

WordPress Privilege Escalation PHP
NVD
CVSS 3.1
8.8
EPSS
0.0%
CVE-2025-50004 HIGH This Week

Deserialization of Untrusted Data vulnerability in artbees JupiterX Core jupiterx-core allows Object Injection.This issue affects JupiterX Core: from n/a through <= 4.10.1. [CVSS 8.5 HIGH]

Deserialization
NVD
CVSS 3.1
8.8
EPSS
0.0%
CVE-2026-24037 MEDIUM POC This Month

Horilla HRMS version 1.4.0 contains insufficient input validation in its XSS prevention function, allowing attackers to bypass protections through context-agnostic regex patterns. Public exploit code exists for this vulnerability, enabling attackers to redirect users to malicious sites, execute arbitrary JavaScript, and steal CSRF tokens for use in admin-targeted attacks. The vulnerability affects Horilla 1.4.0 and has been patched in version 1.5.0.

XSS CSRF Horilla
NVD GitHub
CVSS 3.1
4.8
EPSS
0.0%
CVE-2025-27378 HIGH This Week

AES contains a SQL injection vulnerability due to an inactive configuration that prevents the latest SQL parsing logic from being applied. When this configuration is not enabled, crafted input may be improperly handled, allowing attackers to inject and execute arbitrary SQL queries. [CVSS 8.6 HIGH]

SQLi On Prem Enterprise Server
NVD
CVSS 3.1
8.6
EPSS
0.1%
CVE-2025-69097 HIGH This Week

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in VibeThemes WPLMS wplms_plugin allows Path Traversal.This issue affects WPLMS: from n/a through <= 1.9.9.5.4. [CVSS 8.1 HIGH]

Path Traversal
NVD
CVSS 3.1
8.6
EPSS
0.1%
CVE-2025-68912 HIGH This Week

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Harmonic Design HDForms hdforms allows Path Traversal.This issue affects HDForms: from n/a through <= 1.6.1. [CVSS 8.6 HIGH]

Path Traversal
NVD
CVSS 3.1
8.6
EPSS
0.1%
CVE-2025-67963 HIGH This Week

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ovatheme Movie Booking movie-booking allows Path Traversal.This issue affects Movie Booking: from n/a through <= 1.1.5. [CVSS 8.6 HIGH]

Path Traversal
NVD
CVSS 3.1
8.6
EPSS
0.1%
CVE-2025-68901 HIGH This Week

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in AivahThemes Anona anona allows Path Traversal.This issue affects Anona: from n/a through <= 8.0. [CVSS 8.6 HIGH]

Path Traversal
NVD
CVSS 3.1
8.6
EPSS
0.0%
CVE-2026-24367 HIGH This Week

Blind SQL injection in shinetheme Traveler versions before 3.2.8 enables authenticated attackers to extract sensitive database information through manipulated SQL queries. An attacker with valid credentials can exploit this vulnerability to read, modify, or delete arbitrary data with no user interaction required. No patch is currently available.

SQLi
NVD
CVSS 3.1
8.5
EPSS
0.0%
CVE-2025-69180 HIGH This Week

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in themepassion Ultra Portfolio ultra-portfolio allows Blind SQL Injection.This issue affects Ultra Portfolio: from n/a through <= 6.7. [CVSS 8.8 HIGH]

SQLi
NVD
CVSS 3.1
8.5
EPSS
0.0%
CVE-2025-68881 HIGH This Week

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saad Iqbal AppExperts appexperts allows SQL Injection.This issue affects AppExperts: from n/a through <= 1.4.5. [CVSS 8.5 HIGH]

SQLi
NVD
CVSS 3.1
8.5
EPSS
0.0%
CVE-2025-68999 HIGH This Week

HappyMonster Happy Addons for Elementor happy-elementor-addons is affected by sql injection (CVSS 8.5).

SQLi
NVD
CVSS 3.1
8.5
EPSS
0.0%
CVE-2025-69045 HIGH This Week

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in FooEvents FooEvents for WooCommerce fooevents allows SQL Injection.This issue affects FooEvents for WooCommerce: from n/a through <= 1.20.4. [CVSS 8.5 HIGH]

WordPress SQLi PHP
NVD
CVSS 3.1
8.5
EPSS
0.0%
CVE-2025-49050 HIGH This Week

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in kamleshyadav WP Lead Capturing Pages wp-lead-capture allows Blind SQL Injection.This issue affects WP Lead Capturing Pages: from n/a through <= 2.5. [CVSS 8.8 HIGH]

SQLi
NVD
CVSS 3.1
8.5
EPSS
0.0%
CVE-2025-49049 HIGH This Week

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ZoomIt DZS Video Gallery dzs-videogallery allows SQL Injection.This issue affects DZS Video Gallery: from n/a through <= 12.37. [CVSS 8.8 HIGH]

SQLi
NVD
CVSS 3.1
8.5
EPSS
0.0%
Prev Page 2 of 10 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy