Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2017-18533

    The rimons-twitter-widget plugin before 1.3 for WordPress has XSS.... Read more

    Affected Products : rimons_twitter_widget
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18532

    The realty plugin before 1.1.0 for WordPress has multiple XSS issues.... Read more

    Affected Products : realty
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18531

    The raygun4wp plugin before 1.8.3 for WordPress has XSS in the settings, a different issue than CVE-2017-9288.... Read more

    Affected Products : raygun4wp
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18530

    The rating-bws plugin before 0.2 for WordPress has multiple XSS issues.... Read more

    Affected Products : rating
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18529

    The promobar plugin before 1.1.1 for WordPress has multiple XSS issues.... Read more

    Affected Products : promobar
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18528

    The pdf-print plugin before 1.9.4 for WordPress has multiple XSS issues.... Read more

    Affected Products : pdf_\&_print
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18527

    The pagination plugin before 1.0.7 for WordPress has multiple XSS issues.... Read more

    Affected Products : pagination
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18526

    The moreads-se plugin before 1.4.7 for WordPress has XSS.... Read more

    Affected Products : moreads_se
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18525

    The megamenu plugin before 2.4 for WordPress has XSS.... Read more

    Affected Products : max_mega_menu
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2017-18523

    The eelv-newsletter plugin before 4.6.1 for WordPress has CSRF in the address book.... Read more

    Affected Products : eelv_newsletter
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18522

    The eelv-newsletter plugin before 4.6.1 for WordPress has XSS in the address book.... Read more

    Affected Products : eelv_newsletter
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2017-18521

    The democracy-poll plugin before 5.4 for WordPress has CSRF via wp-admin/options-general.php?page=democracy-poll&subpage=l10n.... Read more

    Affected Products : democracy_poll
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18520

    The democracy-poll plugin before 5.4 for WordPress has XSS via update_l10n in admin/class.DemAdminInit.php.... Read more

    Affected Products : democracy_poll
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18519

    The customer-area plugin before 7.4.3 for WordPress has XSS via admin pages.... Read more

    Affected Products : wp_customer_area
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18518

    The bws-smtp plugin before 1.1.0 for WordPress has multiple XSS issues.... Read more

    Affected Products : smtp
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18517

    The bws-pinterest plugin before 1.0.5 for WordPress has multiple XSS issues.... Read more

    Affected Products : pinterest
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2017-18516

    The bws-linkedin plugin before 1.0.5 for WordPress has multiple XSS issues.... Read more

    Affected Products : linkedin
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2017-18515

    The wp-statistics plugin before 12.0.8 for WordPress has SQL injection.... Read more

    Affected Products : wp_statistics
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2017-18514

    The simple-login-log plugin before 1.1.2 for WordPress has SQL injection.... Read more

    Affected Products : simple_login_log
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2017-18513

    The responsive-menu plugin before 3.1.4 for WordPress has no CSRF protection mechanism for the admin interface.... Read more

    Affected Products : responsive_menu
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 292864 Results