Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2015-9373

    PayPal Pro Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : ithemes_paypal_pro
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9372

    Membership Add-on for iThemes Exchange before 1.3.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : membership
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9371

    Manual Purchases Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : manual_purchases
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9370

    Invoices Add-on for iThemes Exchange before 1.4.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : invoices
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9369

    Easy US Sales Taxes Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : easy_us_sales_taxes
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9368

    Easy EU Value Added (VAT) Taxes Add-on for iThemes Exchange before 1.2.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : easy_eu_value_added_\(vat\)_taxes
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9367

    Easy Canadian Sales Taxes Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : easy_canadian_sales_taxes
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9366

    Custom URL Tracking Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : custom_url_tracking
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9365

    Authorize.net Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : authorize.net
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9364

    2Checkout Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : ithemes_2checkout
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9363

    iThemes Exchange before 1.12.0 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : exchange
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9362

    The Post Connector plugin before 1.0.4 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : post_connector
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9361

    The Related Posts plugin before 1.8.2 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : related_posts
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9360

    The updraftplus plugin before 1.9.64 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : updraftplus
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9359

    The Jetpack plugin before 3.4.3 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : jetpack
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9358

    The feedwordpress plugin before 2015.0514 for WordPress has XSS via add_query_arg() and remove_query_arg().... Read more

    Affected Products : feedwordpress
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9357

    The akismet plugin before 3.1.5 for WordPress has XSS.... Read more

    Affected Products : akismet
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9356

    The wp-vipergb plugin before 1.3.16 for WordPress has XSS via add_query_arg() and remove_query_arg(), a different issue than CVE-2014-9460.... Read more

    Affected Products : wp-vipergb
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2015-9355

    The two-factor-authentication plugin before 1.1.10 for WordPress has XSS in the admin area.... Read more

    Affected Products : two-factor-authentication
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024

  • 4.8

    MEDIUM
    CVE-2015-9354

    The gigpress plugin before 2.3.11 for WordPress has XSS.... Read more

    Affected Products : gigpress
    • Published: Aug. 28, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 292803 Results