Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
9.8 CRITICAL
CVE-2020-37228 — iDS6 DSSPro Digital Signage System 6.2 CAPTCHA Security Bypass

iDS6 DSSPro Digital Signage System 6.2 contains a CAPTCHA security bypass vulnerability that allows attackers to bypass authentication by requesting the autoLoginVerifyCode object. Attackers can retr…

Remote | Authentication
May 16, 2026 May 18, 2026
May 16, 2026
May 18, 2026
8.8 HIGH
CVE-2020-37227 — WordPress Plugin HS Brand Logo Slider 2.1 Unrestricted File Upload

HS Brand Logo Slider 2.1 contains an unrestricted file upload vulnerability that allows authenticated users to bypass client-side file extension validation by uploading arbitrary files. Attackers can…

Remote | Misconfiguration
May 16, 2026 May 18, 2026
May 16, 2026
May 18, 2026
6.5 MEDIUM
CVE-2026-46719 — Net::Statsd::Lite versions before 0.9.0 for Perl allowed metric injections

Net::Statsd::Lite versions before 0.9.0 for Perl allowed metric injections. The metric names were not checked for newlines, colons or pipes. Metrics generated from untrusted sources could inject add…

Remote | Injection
May 16, 2026 May 19, 2026
May 16, 2026
May 19, 2026
4.3 MEDIUM
CVE-2025-4202 — Multicollab: Content Team Collaboration and Editorial Workflow <= 5.2 - Missing Authoriza…

The Multicollab: Content Team Collaboration and Editorial Workflow plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'cf_add_comment' fu…

Remote | Authorization
May 16, 2026 May 18, 2026
May 16, 2026
May 18, 2026
Showing 20 of 6544 Results