.net Explorer CVEs and Security Vulnerabilities

Search

Expected end of text, found ':' (at char 29), (line:1, col:30)

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (340609 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-31913	2 Whitebox-studio, Wordpress	2 Scape, Wordpress	2026-03-26	N/A
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Whitebox-Studio Scape scape allows Path Traversal.This issue affects Scape: from n/a through < 1.5.16.
CVE-2026-31920	2 Devteam Haywoodtech, Wordpress	2 Product Rearrange For Woocommerce, Wordpress	2026-03-26	N/A
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Devteam HaywoodTech Product Rearrange for WooCommerce products-rearrange-woocommerce allows Blind SQL Injection.This issue affects Product Rearrange for WooCommerce: from n/a through <= 1.2.2.
CVE-2026-31921	2 Devteam Haywoodtech, Wordpress	2 Product Rearrange For Woocommerce, Wordpress	2026-03-26	N/A
Missing Authorization vulnerability in Devteam HaywoodTech Product Rearrange for WooCommerce products-rearrange-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Rearrange for WooCommerce: from n/a through <= 1.2.2.
CVE-2026-32441	2 Webtoffee, Wordpress	2 Wordpress Comments Import And Export, Wordpress	2026-03-26	N/A
Missing Authorization vulnerability in WebToffee Comments Import & Export comments-import-export-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Comments Import & Export: from n/a through <= 2.4.9.
CVE-2026-32482	2 Deothemes, Wordpress	2 Ona, Wordpress	2026-03-26	N/A
Unrestricted Upload of File with Dangerous Type vulnerability in deothemes Ona ona allows Upload a Web Shell to a Web Server.This issue affects Ona: from n/a through < 1.24.
CVE-2026-32483	2 Codepeople, Wordpress	2 Contact Form Email, Wordpress	2026-03-26	N/A
Missing Authorization vulnerability in codepeople Contact Form Email contact-form-to-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form Email: from n/a through <= 1.3.63.
CVE-2026-32484	2 Boldgrid, Wordpress	2 Weforms, Wordpress	2026-03-26	N/A
Deserialization of Untrusted Data vulnerability in BoldGrid weForms weforms allows Object Injection.This issue affects weForms: from n/a through <= 1.6.26.
CVE-2026-32485	2 Wedevs, Wordpress	2 Wp User Frontend, Wordpress	2026-03-26	N/A
Missing Authorization vulnerability in weDevs WP User Frontend wp-user-frontend allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP User Frontend: from n/a through <= 4.2.8.
CVE-2026-32488	2 Wordpress, Wpeverest	2 Wordpress, User Registration	2026-03-26	N/A
Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration allows Privilege Escalation.This issue affects User Registration: from n/a through <= 4.4.9.
CVE-2026-32489	2 Bplugins, Wordpress	2 B Blocks, Wordpress	2026-03-26	N/A
Missing Authorization vulnerability in bPlugins B Blocks b-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects B Blocks: from n/a through < 2.0.30.
CVE-2026-32492	2 Joe Dolson, Wordpress	2 My Tickets, Wordpress	2026-03-26	N/A
Authentication Bypass by Spoofing vulnerability in Joe Dolson My Tickets my-tickets allows Identity Spoofing.This issue affects My Tickets: from n/a through <= 2.1.1.
CVE-2026-32493	2 Eyecix, Wordpress	2 Jobsearch, Wordpress	2026-03-26	N/A
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in eyecix JobSearch wp-jobsearch allows Reflected XSS.This issue affects JobSearch: from n/a through <= 3.2.0.
CVE-2026-32495	2 Linksoftwarellc, Wordpress	2 Wp Terms Popup, Wordpress	2026-03-26	N/A
Missing Authorization vulnerability in Link Software LLC WP Terms Popup wp-terms-popup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Terms Popup: from n/a through <= 2.10.0.
CVE-2026-32496	2 Nysl, Wordpress	2 Spam Protect For Contact Form 7, Wordpress	2026-03-26	N/A
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NYSL Spam Protect for Contact Form 7 wp-contact-form-7-spam-blocker allows Path Traversal.This issue affects Spam Protect for Contact Form 7: from n/a through <= 1.2.9.
CVE-2026-32497	2 Pickplugins, Wordpress	2 User Verification, Wordpress	2026-03-26	N/A
Weak Authentication vulnerability in PickPlugins User Verification user-verification allows Authentication Abuse.This issue affects User Verification: from n/a through <= 2.0.45.
CVE-2026-32498	2 Metagauss, Wordpress	2 Registrationmagic, Wordpress	2026-03-26	N/A
Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects RegistrationMagic: from n/a through <= 6.0.7.6.
CVE-2026-32499	2 Quantumcloud, Wordpress	2 Chatbot, Wordpress	2026-03-26	N/A
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in QuantumCloud ChatBot chatbot allows Blind SQL Injection.This issue affects ChatBot: from n/a through <= 7.7.9.
CVE-2026-32500	2 Creativews, Wordpress	2 Metamax, Wordpress	2026-03-26	N/A
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in CreativeWS MetaMax metamax allows PHP Local File Inclusion.This issue affects MetaMax: from n/a through <= 1.1.4.
CVE-2026-32501	2 Wordpress, Wp-configurator	2 Wordpress, Wp Configurator Pro	2026-03-26	N/A
Missing Authorization vulnerability in wp-configurator WP Configurator Pro wp-configurator-pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Configurator Pro: from n/a through <= 3.7.9.
CVE-2026-32502	2 Select-themes, Wordpress	2 Borgholm, Wordpress	2026-03-26	N/A
Deserialization of Untrusted Data vulnerability in Select-Themes Borgholm borgholm-marketing-agency-theme allows Object Injection.This issue affects Borgholm: from n/a through < 1.6.

« first previous Page 36 of 17031. next last »