Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.4 HIGH
CVE-2026-25705 — Rancher Extensions have arbitrary file access via path traversal

A vulnerability has been identified in [Rancher's Extensions](https://ranchermanager.docs.rancher.com/integrations-in-rancher/rancher-extensions) where malicious code can be injected in Rancher throu…

rancher | Remote | Path Traversal
May 13, 2026 May 13, 2026
May 13, 2026
May 13, 2026
5.5 MEDIUM
CVE-2025-14767 — WPC Badge Management for WooCommerce <= 3.1.6 - Authenticated (Shop Manager+) Stored Cros…

The WPC Badge Management for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the `wpcbm_best_seller` shortcode in all versions up to, and inc…

wpc_badge_management_for_woocommerce | Remote | Cross-Site Scripting
May 13, 2026 May 13, 2026
May 13, 2026
May 13, 2026
Showing 20 of 7042 Results