Latest CVE Feed
CVE Intelligence
Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.
Score
Vulnerability
Published
8.8
HIGH
CVE-2026-6419
— Wishlist Member <= 3.30.1 - Missing Authorization to Authenticated (Subscriber+) API Secr…
The WishList Member plugin for WordPress is vulnerable to Privilege Escalation via Missing Authorization in versions up to and including 3.30.1. This is due to the missing capability and nonce check …
Remote
|
Authorization
May 23, 2026
May 26, 2026
May 23, 2026
May 26, 2026