Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.8

    CRITICAL
    CVE-2016-1000217

    Zotpress plugin for WordPress SQLi in zp_get_account()... Read more

    Affected Products : zotpress zotpress
    • EPSS Score: %11.40
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2016-1000125

    Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla... Read more

    Affected Products : huge-it_catalog catalog
    • EPSS Score: %2.25
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2016-1000124

    Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6... Read more

    Affected Products : portfolio_gallery
    • EPSS Score: %2.27
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2016-1000123

    Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla... Read more

    Affected Products : video_gallery
    • EPSS Score: %6.45
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000114

    XSS in huge IT gallery v1.1.5 for Joomla... Read more

    Affected Products : image_gallery gallery
    • EPSS Score: %0.23
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2016-1000113

    XSS and SQLi in huge IT gallery v1.1.5 for Joomla... Read more

    Affected Products : image_gallery gallery
    • EPSS Score: %2.77
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.4

    HIGH
    CVE-2016-1000112

    Unauthenticated remote .jpg file upload in contus-video-comments v1.0 wordpress plugin... Read more

    Affected Products : contus-video-comments
    • EPSS Score: %35.66
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2016-1000009

    TP-LINK lost control of two domains, www.tplinklogin.net and tplinkextender.net. Please note that these domains are physically printed on many of the devices.... Read more

    Affected Products : tp-link
    • EPSS Score: %0.27
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 8.8

    HIGH
    CVE-2016-1000000

    Ipswitch WhatsUp Gold 16.4.1 WrFreeFormText.asp sUniqueID Parameter Blind SQL Injection... Read more

    Affected Products : whatsup_gold whatsup_gold
    • EPSS Score: %0.03
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2015-1000013

    Remote file upload vulnerability in wordpress plugin csv2wpec-coupon v1.1... Read more

    Affected Products : csv2wpec-coupon
    • EPSS Score: %6.04
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000012

    Local File Inclusion Vulnerability in mypixs v0.3 wordpress plugin... Read more

    Affected Products : mypixs
    • EPSS Score: %68.58
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2015-1000011

    Blind SQL Injection in wordpress plugin dukapress v2.5.9... Read more

    Affected Products : dukapress dukapress
    • EPSS Score: %6.01
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000010

    Remote file download in simple-image-manipulator v1.0 wordpress plugin... Read more

    Affected Products : simple-image-manipulator
    • EPSS Score: %31.97
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.1

    CRITICAL
    CVE-2015-1000009

    Open proxy in Wordpress plugin google-adsense-and-hotel-booking v1.05... Read more

    Affected Products : google-adsense-and-hotel-booking
    • EPSS Score: %5.70
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 5.3

    MEDIUM
    CVE-2015-1000008

    Path Disclosure Vulnerability in wordpress plugin MP3-jPlayer v2.3.2... Read more

    Affected Products : mp3-jplayer
    • EPSS Score: %3.80
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000007

    Remote file download vulnerability in wptf-image-gallery v1.03... Read more

    Affected Products : wptf-image-gallery
    • EPSS Score: %8.88
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000006

    Remote file download vulnerability in recent-backups v0.7 wordpress plugin... Read more

    Affected Products : recent-backups
    • EPSS Score: %10.61
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000005

    Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin... Read more

    Affected Products : candidate-application-form
    • EPSS Score: %21.20
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2015-1000004

    XSS in filedownload v1.4 wordpress plugin... Read more

    Affected Products : filedownload
    • EPSS Score: %1.19
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2015-1000003

    Blind SQL Injection in filedownload v1.4 wordpress plugin... Read more

    Affected Products : filedownload
    • EPSS Score: %6.01
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025
Showing 20 of 291717 Results