Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2017-18573

    The simple-login-log plugin before 1.1.2 for WordPress has SQL injection.... Read more

    Affected Products : simple_login_log
    • Published: Aug. 22, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18572

    The gnucommerce plugin before 1.4.2 for WordPress has XSS.... Read more

    Affected Products : gnucommerce
    • Published: Aug. 22, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2017-18571

    The search-everything plugin before 8.1.7 for WordPress has SQL injection related to WordPress 4.7.x, a different vulnerability than CVE-2014-2316.... Read more

    Affected Products : search_everything search_everything
    • Published: Aug. 22, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2017-18570

    The cforms2 plugin before 14.13 for WordPress has SQL injection in the tracking DB GUI via Delete Entries or Download Entries.... Read more

    Affected Products : cformsii
    • Published: Aug. 22, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2017-18569

    The my-wp-translate plugin before 1.0.4 for WordPress has CSRF.... Read more

    Affected Products : my_wp_translate
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18568

    The my-wp-translate plugin before 1.0.4 for WordPress has XSS.... Read more

    Affected Products : my_wp_translate
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18567

    The wp-all-import plugin before 3.4.6 for WordPress has XSS.... Read more

    Affected Products : wp_all_import
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18566

    The user-role plugin before 1.5.6 for WordPress has multiple XSS issues.... Read more

    Affected Products : user_role
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18565

    The updater plugin before 1.35 for WordPress has multiple XSS issues.... Read more

    Affected Products : updater
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18564

    The sender plugin before 1.2.1 for WordPress has multiple XSS issues.... Read more

    Affected Products : sender
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18563

    The rsvp plugin before 2.3.8 for WordPress has persistent XSS via the note field on the attendee-list screen.... Read more

    Affected Products : rsvp
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18562

    The error-log-viewer plugin before 1.0.6 for WordPress has multiple XSS issues.... Read more

    Affected Products : error_log_viewer
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18561

    The embed-comment-images plugin before 0.6 for WordPress has XSS.... Read more

    Affected Products : embed_images_in_comments
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18560

    The content-audit plugin before 1.9.2 for WordPress has XSS.... Read more

    Affected Products : content_audit
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18559

    The cforms2 plugin before 14.13.3 for WordPress has multiple XSS issues.... Read more

    Affected Products : cformsii
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18558

    The bws-testimonials plugin before 0.1.9 for WordPress has multiple XSS issues.... Read more

    Affected Products : testimonials
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18557

    The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues.... Read more

    Affected Products : google_maps
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18556

    The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues.... Read more

    Affected Products : google_analytics
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18555

    The booking-sms plugin before 1.1.0 for WordPress has XSS.... Read more

    Affected Products : booking_calendar
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18554

    The analytics-tracker plugin before 1.1.1 for WordPress has XSS via a search event.... Read more

    Affected Products : analytics_tracker
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 292864 Results