Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2016-10909

    The booking-calendar-contact-form plugin before 1.0.24 for WordPress has SQL injection.... Read more

    • EPSS Score: %0.51
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10908

    The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS.... Read more

    • EPSS Score: %0.19
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2016-10907

    An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.09
    • Published: Aug. 19, 2019
    • Modified: Nov. 21, 2024

  • 7.0

    HIGH
    CVE-2016-10906

    An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.07
    • Published: Aug. 19, 2019
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2016-10905

    An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.07
    • Published: Aug. 19, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-10904

    The olimometer plugin before 2.57 for WordPress has SQL injection.... Read more

    Affected Products : olimometer
    • EPSS Score: %0.55
    • Published: Aug. 16, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10903

    The GoDaddy godaddy-email-marketing-sign-up-forms plugin before 1.1.3 for WordPress has CSRF.... Read more

    Affected Products : godaddy_email_marketing
    • EPSS Score: %0.11
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10902

    The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools.... Read more

    Affected Products : wp_customer_reviews
    • EPSS Score: %0.11
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10901

    The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools.... Read more

    Affected Products : wp_customer_reviews
    • EPSS Score: %0.19
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10900

    The uji-countdown plugin before 2.0.7 for WordPress has XSS.... Read more

    Affected Products : uji_countdown
    • EPSS Score: %0.19
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2016-10899

    The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability.... Read more

    Affected Products : total_security
    • EPSS Score: %0.19
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10898

    The total-security plugin before 3.4.1 for WordPress has XSS.... Read more

    Affected Products : total_security
    • EPSS Score: %0.19
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10897

    The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues.... Read more

    Affected Products : sermon_browser
    • EPSS Score: %0.19
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10896

    The seo-redirection plugin before 4.3 for WordPress has stored XSS.... Read more

    Affected Products : seo_redirection
    • EPSS Score: %0.19
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10895

    The option-tree plugin before 2.6.0 for WordPress has XSS via an add_list_item or add_social_links AJAX request.... Read more

    Affected Products : optiontree
    • EPSS Score: %0.19
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 4.6

    MEDIUM
    CVE-2016-10894

    xtrlock through 2.10 does not block multitouch events. Consequently, an attacker at a locked screen can send input to (and thus control) various programs such as Chromium via events such as pan scrolling, "pinch and zoom" gestures, or even regular mouse c... Read more

    Affected Products : debian_linux xtrlock
    • EPSS Score: %0.04
    • Published: Aug. 16, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10893

    The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests.... Read more

    Affected Products : crayon_syntax_highlighter
    • EPSS Score: %0.50
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10892

    The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues.... Read more

    Affected Products : chained_quiz
    • EPSS Score: %0.19
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10891

    The aryo-activity-log plugin before 2.3.3 for WordPress has XSS.... Read more

    Affected Products : activity_log
    • EPSS Score: %0.31
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10890

    The aryo-activity-log plugin before 2.3.2 for WordPress has XSS.... Read more

    Affected Products : activity_log
    • EPSS Score: %0.24
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 291756 Results