Skip to content
Toggle Navigation
Kit ISO 27001
Ingeniería y Consultoría
Recursos
ISO 27001
ISO 27001 – GAP Analysis Tool
Ciberseguridad
Vulnerabilidades CVE
Blog
Contacto
Obtener el Toolkit
Toggle Navigation
Kit ISO 27001
Ingeniería y Consultoría
Recursos
ISO 27001
ISO 27001 – GAP Analysis Tool
Ciberseguridad
Vulnerabilidades CVE
Blog
Contacto
Obtener el Toolkit
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
CVE:
Aplicar
Borrar filtros
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2026-49075
2026-06-17
CRITICAL
9.8
Contributor PHP Object Injection in JetEngine
CVE-2026-49073
2026-06-17
HIGH
8.5
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in wpWax Directorist Booking allows Blind SQL Injection. This issue affects Directorist Booking: from n/a…
CVE-2026-49058
2026-06-17
CRITICAL
9.8
Unauthenticated Privilege Escalation in LoginPress Pro
CVE-2026-49057
2026-06-17
HIGH
7.5
Unauthenticated Broken Access Control in JobSearch
CVE-2026-48875
2026-06-17
CRITICAL
9.3
Unauthenticated SQL Injection in JetSmartFilters
CVE-2026-48869
2026-06-17
HIGH
7.1
Unauthenticated Cross Site Scripting (XSS) in Enfold
CVE-2026-42380
2026-06-17
CRITICAL
9.8
Unauthenticated PHP Object Injection in AI Lab < 5.4.2 versions.
CVE-2026-40783
2026-06-17
CRITICAL
9.9
Contributor Remote Code Execution (RCE) in Blocksy Companion Pro
CVE-2026-40761
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Valeska
CVE-2026-40760
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Behold
CVE-2026-40759
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Esmée
CVE-2026-40758
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Léonie
CVE-2026-40755
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in TechLink
CVE-2026-40754
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Roisin
CVE-2026-40751
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Ashtanga
CVE-2026-40749
2026-06-17
CRITICAL
9.9
Subscriber Arbitrary File Upload in Charity Zone
CVE-2026-40747
2026-06-17
CRITICAL
9.9
Subscriber Arbitrary File Upload in Ecommerce Zone
CVE-2026-40739
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in LuxeDrive
CVE-2026-40736
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Laurits
CVE-2026-40726
2026-06-17
HIGH
8.2
Unauthenticated Broken Access Control in User Registration Stripe
CVE-2026-40724
2026-06-17
MEDIUM
6.5
CP Client Arbitrary File Download in Client Portal (Pro)
CVE-2026-40722
2026-06-17
MEDIUM
5.5
Missing Authorization vulnerability in Yoast BV Yoast SEO Premium allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Yoast SEO Premium: from n/a through 26.6.
CVE-2026-39598
2026-06-17
HIGH
8.0
Unrestricted Upload of File with Dangerous Type vulnerability in Kodezen LLC Academy LMS Pro allows Upload a Web Shell to a Web Server. This issue affects Academy LMS…
CVE-2026-39596
2026-06-17
CRITICAL
9.3
Unauthenticated SQL Injection in Blocksy Companion Pro < 2.1.29 versions.
CVE-2026-39589
2026-06-17
CRITICAL
9.9
Subscriber Arbitrary File Upload in Webenvo
CVE-2026-39580
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Micdrop
CVE-2026-39578
2026-06-17
MEDIUM
5.5
Unauthenticated PHP Object Injection in Valiance
CVE-2026-39577
2026-06-17
MEDIUM
5.5
Unauthenticated PHP Object Injection in Playroom
CVE-2026-39568
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Mr. SEO
CVE-2026-39567
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Santé
CVE-2026-39557
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in NeoBeat
CVE-2026-39554
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Fidalgo
CVE-2026-39549
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Aperitif
CVE-2026-39548
2026-06-17
HIGH
7.1
Unauthenticated Cross Site Scripting (XSS) in MagOne
CVE-2026-39547
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Getaway < 1.8 versions.
CVE-2026-39546
2026-06-17
HIGH
7.6
Subscriber Privilege Escalation in MultiLoca
CVE-2026-39539
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Alloggio - Hotel Booking
CVE-2026-39537
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Mikado Core
CVE-2026-39529
2026-06-17
CRITICAL
9.8
Unauthenticated PHP Object Injection in Elementra
CVE-2026-39522
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Solene
CVE-2026-39446
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in Kapee < 1.7.0 versions.
CVE-2026-39443
2026-06-17
HIGH
8.1
Unauthenticated PHP Object Injection in EmallShop
CVE-2026-39438
2026-06-17
CRITICAL
9.3
Unauthenticated SQL Injection in ListingPro
CVE-2026-39433
2026-06-17
MEDIUM
6.5
Subscriber Arbitrary Content Deletion in WPAMS < 49.5.3 versions.
CVE-2026-34895
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Softlab Core < 1.2.11 versions.
CVE-2026-34894
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Integrio Core < 1.2.8 versions.
CVE-2026-34893
2026-06-17
HIGH
8.1
Unauthenticated Local File Inclusion in Thegov Core < 2.0.23 versions.
CVE-2026-27429
2026-06-17
CRITICAL
9.8
Unauthenticated PHP Object Injection in Nifty
CVE-2026-27395
2026-06-17
CRITICAL
9.8
Unauthenticated Privilege Escalation in Support Board < 3.8.9 versions.
CVE-2026-27041
2026-06-17
CRITICAL
9.9
Contributor Arbitrary File Upload in Unlimited Elements for Elementor (Premium)
« Anterior
Página 87 de 4528
Siguiente »
Page load link
Go to Top