Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2026-49075 2026-06-17 CRITICAL 9.8 Contributor PHP Object Injection in JetEngine
CVE-2026-49073 2026-06-17 HIGH 8.5 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in wpWax Directorist Booking allows Blind SQL Injection. This issue affects Directorist Booking: from n/a…
CVE-2026-49058 2026-06-17 CRITICAL 9.8 Unauthenticated Privilege Escalation in LoginPress Pro
CVE-2026-49057 2026-06-17 HIGH 7.5 Unauthenticated Broken Access Control in JobSearch
CVE-2026-48875 2026-06-17 CRITICAL 9.3 Unauthenticated SQL Injection in JetSmartFilters
CVE-2026-48869 2026-06-17 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in Enfold
CVE-2026-42380 2026-06-17 CRITICAL 9.8 Unauthenticated PHP Object Injection in AI Lab < 5.4.2 versions.
CVE-2026-40783 2026-06-17 CRITICAL 9.9 Contributor Remote Code Execution (RCE) in Blocksy Companion Pro
CVE-2026-40761 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Valeska
CVE-2026-40760 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Behold
CVE-2026-40759 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Esmée
CVE-2026-40758 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Léonie
CVE-2026-40755 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in TechLink
CVE-2026-40754 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Roisin
CVE-2026-40751 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Ashtanga
CVE-2026-40749 2026-06-17 CRITICAL 9.9 Subscriber Arbitrary File Upload in Charity Zone
CVE-2026-40747 2026-06-17 CRITICAL 9.9 Subscriber Arbitrary File Upload in Ecommerce Zone
CVE-2026-40739 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in LuxeDrive
CVE-2026-40736 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Laurits
CVE-2026-40726 2026-06-17 HIGH 8.2 Unauthenticated Broken Access Control in User Registration Stripe
CVE-2026-40724 2026-06-17 MEDIUM 6.5 CP Client Arbitrary File Download in Client Portal (Pro)
CVE-2026-40722 2026-06-17 MEDIUM 5.5 Missing Authorization vulnerability in Yoast BV Yoast SEO Premium allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Yoast SEO Premium: from n/a through 26.6.
CVE-2026-39598 2026-06-17 HIGH 8.0 Unrestricted Upload of File with Dangerous Type vulnerability in Kodezen LLC Academy LMS Pro allows Upload a Web Shell to a Web Server. This issue affects Academy LMS…
CVE-2026-39596 2026-06-17 CRITICAL 9.3 Unauthenticated SQL Injection in Blocksy Companion Pro < 2.1.29 versions.
CVE-2026-39589 2026-06-17 CRITICAL 9.9 Subscriber Arbitrary File Upload in Webenvo
CVE-2026-39580 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Micdrop
CVE-2026-39578 2026-06-17 MEDIUM 5.5 Unauthenticated PHP Object Injection in Valiance
CVE-2026-39577 2026-06-17 MEDIUM 5.5 Unauthenticated PHP Object Injection in Playroom
CVE-2026-39568 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Mr. SEO
CVE-2026-39567 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Santé
CVE-2026-39557 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in NeoBeat
CVE-2026-39554 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Fidalgo
CVE-2026-39549 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Aperitif
CVE-2026-39548 2026-06-17 HIGH 7.1 Unauthenticated Cross Site Scripting (XSS) in MagOne
CVE-2026-39547 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Getaway < 1.8 versions.
CVE-2026-39546 2026-06-17 HIGH 7.6 Subscriber Privilege Escalation in MultiLoca
CVE-2026-39539 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Alloggio - Hotel Booking
CVE-2026-39537 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Mikado Core
CVE-2026-39529 2026-06-17 CRITICAL 9.8 Unauthenticated PHP Object Injection in Elementra
CVE-2026-39522 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Solene
CVE-2026-39446 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in Kapee < 1.7.0 versions.
CVE-2026-39443 2026-06-17 HIGH 8.1 Unauthenticated PHP Object Injection in EmallShop
CVE-2026-39438 2026-06-17 CRITICAL 9.3 Unauthenticated SQL Injection in ListingPro
CVE-2026-39433 2026-06-17 MEDIUM 6.5 Subscriber Arbitrary Content Deletion in WPAMS < 49.5.3 versions.
CVE-2026-34895 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Softlab Core < 1.2.11 versions.
CVE-2026-34894 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Integrio Core < 1.2.8 versions.
CVE-2026-34893 2026-06-17 HIGH 8.1 Unauthenticated Local File Inclusion in Thegov Core < 2.0.23 versions.
CVE-2026-27429 2026-06-17 CRITICAL 9.8 Unauthenticated PHP Object Injection in Nifty
CVE-2026-27395 2026-06-17 CRITICAL 9.8 Unauthenticated Privilege Escalation in Support Board < 3.8.9 versions.
CVE-2026-27041 2026-06-17 CRITICAL 9.9 Contributor Arbitrary File Upload in Unlimited Elements for Elementor (Premium)
« Anterior Página 87 de 4528 Siguiente »