Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2016-10892

    The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues.... Read more

    Affected Products : chained_quiz
    • EPSS Score: %0.19
    • Published: Aug. 20, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10891

    The aryo-activity-log plugin before 2.3.3 for WordPress has XSS.... Read more

    Affected Products : activity_log
    • EPSS Score: %0.31
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10890

    The aryo-activity-log plugin before 2.3.2 for WordPress has XSS.... Read more

    Affected Products : activity_log
    • EPSS Score: %0.24
    • Published: Aug. 21, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-10889

    The nextgen-gallery plugin before 2.1.57 for WordPress has SQL injection via a gallery name.... Read more

    Affected Products : nextgen_gallery
    • EPSS Score: %0.55
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-10888

    The all-in-one-wp-security-and-firewall plugin before 4.0.7 for WordPress has multiple SQL injection issues.... Read more

    • EPSS Score: %0.55
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-10887

    The all-in-one-wp-security-and-firewall plugin before 4.0.9 for WordPress has multiple SQL injection issues.... Read more

    • EPSS Score: %0.60
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-10886

    The wp-editor plugin before 1.2.6 for WordPress has incorrect permissions.... Read more

    Affected Products : wp_editor
    • EPSS Score: %0.70
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10885

    The wp-editor plugin before 1.2.6 for WordPress has CSRF.... Read more

    Affected Products : wp_editor
    • EPSS Score: %0.15
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10884

    The simple-membership plugin before 3.3.3 for WordPress has multiple CSRF issues.... Read more

    Affected Products : simple_membership
    • EPSS Score: %0.30
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10883

    The simple-add-pages-or-posts plugin before 1.7 for WordPress has CSRF for deleting users.... Read more

    Affected Products : simple_add_pages_or_posts
    • EPSS Score: %0.09
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10882

    The google-document-embedder plugin before 2.6.2 for WordPress has CSRF.... Read more

    Affected Products : google_doc_embedder
    • EPSS Score: %0.11
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10881

    The google-document-embedder plugin before 2.6.2 for WordPress has XSS.... Read more

    Affected Products : google_doc_embedder
    • EPSS Score: %0.19
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10880

    The google-document-embedder plugin before 2.6.1 for WordPress has XSS.... Read more

    Affected Products : google_doc_embedder
    • EPSS Score: %0.19
    • Published: Aug. 14, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10879

    The wp-live-chat-support plugin before 6.2.02 for WordPress has XSS.... Read more

    Affected Products : live_chat
    • EPSS Score: %0.44
    • Published: Aug. 12, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10877

    The wp-editor plugin before 1.2.6.3 for WordPress has multiple XSS issues.... Read more

    Affected Products : wp_editor wp_editor
    • EPSS Score: %0.44
    • Published: Aug. 12, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10876

    The wp-database-backup plugin before 4.3.1 for WordPress has CSRF.... Read more

    Affected Products : wp_database_backup
    • EPSS Score: %0.13
    • Published: Aug. 12, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10875

    The wp-database-backup plugin before 4.3.1 for WordPress has XSS.... Read more

    Affected Products : wp_database_backup
    • EPSS Score: %0.21
    • Published: Aug. 12, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10874

    The wp-database-backup plugin before 4.3.3 for WordPress has CSRF.... Read more

    Affected Products : wp_database_backup
    • EPSS Score: %0.20
    • Published: Aug. 12, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10873

    The wp-database-backup plugin before 4.3.3 for WordPress has XSS.... Read more

    Affected Products : wp_database_backup
    • EPSS Score: %0.19
    • Published: Aug. 12, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10872

    The ultimate-member plugin before 1.3.40 for WordPress has XSS on the login form.... Read more

    Affected Products : ultimate_member
    • EPSS Score: %0.31
    • Published: Aug. 12, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 291779 Results