Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.8

    HIGH
    CVE-2015-1000013

    Remote file upload vulnerability in wordpress plugin csv2wpec-coupon v1.1... Read more

    Affected Products : csv2wpec-coupon
    • EPSS Score: %6.04
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000012

    Local File Inclusion Vulnerability in mypixs v0.3 wordpress plugin... Read more

    Affected Products : mypixs
    • EPSS Score: %68.58
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2015-1000011

    Blind SQL Injection in wordpress plugin dukapress v2.5.9... Read more

    Affected Products : dukapress dukapress
    • EPSS Score: %6.01
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000010

    Remote file download in simple-image-manipulator v1.0 wordpress plugin... Read more

    Affected Products : simple-image-manipulator
    • EPSS Score: %31.97
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.1

    CRITICAL
    CVE-2015-1000009

    Open proxy in Wordpress plugin google-adsense-and-hotel-booking v1.05... Read more

    Affected Products : google-adsense-and-hotel-booking
    • EPSS Score: %5.70
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 5.3

    MEDIUM
    CVE-2015-1000008

    Path Disclosure Vulnerability in wordpress plugin MP3-jPlayer v2.3.2... Read more

    Affected Products : mp3-jplayer
    • EPSS Score: %3.80
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000007

    Remote file download vulnerability in wptf-image-gallery v1.03... Read more

    Affected Products : wptf-image-gallery
    • EPSS Score: %8.88
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000006

    Remote file download vulnerability in recent-backups v0.7 wordpress plugin... Read more

    Affected Products : recent-backups
    • EPSS Score: %10.61
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2015-1000005

    Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin... Read more

    Affected Products : candidate-application-form
    • EPSS Score: %21.20
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2015-1000004

    XSS in filedownload v1.4 wordpress plugin... Read more

    Affected Products : filedownload
    • EPSS Score: %1.19
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2015-1000003

    Blind SQL Injection in filedownload v1.4 wordpress plugin... Read more

    Affected Products : filedownload
    • EPSS Score: %6.01
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 8.2

    HIGH
    CVE-2015-1000002

    Open Proxy in filedownload v1.4 wordpress plugin... Read more

    Affected Products : filedownload
    • EPSS Score: %3.09
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2015-1000001

    Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin... Read more

    Affected Products : fast-image-adder
    • EPSS Score: %7.84
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.8

    CRITICAL
    CVE-2015-1000000

    Remote file upload vulnerability in mailcwp v1.99 wordpress plugin... Read more

    Affected Products : mailcwp
    • EPSS Score: %10.09
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.5

    HIGH
    CVE-2016-6653

    The MariaDB audit_plugin component in Pivotal Cloud Foundry (PCF) cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials.... Read more

    Affected Products : cloud_foundry_cf_mysql
    • EPSS Score: %0.30
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-6436

    Cross-site scripting (XSS) vulnerability in HostScan Engine 3.0.08062 through 3.1.14018 in the Cisco Host Scan package, as used in ASA Web VPN, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz14682.... Read more

    Affected Products : hostscan_engine
    • EPSS Score: %0.25
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 6.5

    MEDIUM
    CVE-2016-6435

    The web console in Cisco Firepower Management Center 6.0.1 allows remote authenticated users to read arbitrary files via crafted parameters, aka Bug ID CSCva30376.... Read more

    • EPSS Score: %55.03
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2016-6434

    Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows local users to obtain sensitive information by leveraging CLI access, aka Bug ID CSCva30370.... Read more

    • EPSS Score: %0.38
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 9.0

    HIGH
    CVE-2016-6433

    The Threat Management Console in Cisco Firepower Management Center 5.2.0 through 6.0.1 allows remote authenticated users to execute arbitrary commands via crafted web-application parameters, aka Bug ID CSCva30872.... Read more

    • EPSS Score: %72.60
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2016-6428

    Cisco IOS XR 6.1.1 allows local users to execute arbitrary OS commands as root by leveraging admin privileges, aka Bug ID CSCva38349.... Read more

    Affected Products : ios_xr
    • EPSS Score: %0.08
    • Published: Oct. 06, 2016
    • Modified: Apr. 12, 2025
Showing 20 of 291728 Results