Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2016-1000141

    Reflected XSS in wordpress plugin page-layout-builder v1.9.3... Read more

    Affected Products : page-layout-builder
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000140

    Reflected XSS in wordpress plugin new-year-firework v1.1.9... Read more

    Affected Products : new-year-firework
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000139

    Reflected XSS in wordpress plugin infusionsoft v1.5.11... Read more

    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000138

    Reflected XSS in wordpress plugin indexisto v1.0.5... Read more

    Affected Products : indexisto
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000137

    Reflected XSS in wordpress plugin hero-maps-pro v2.1.0... Read more

    Affected Products : hero-maps-pro
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000136

    Reflected XSS in wordpress plugin heat-trackr v1.0... Read more

    Affected Products : heat-trackr
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000135

    Reflected XSS in wordpress plugin hdw-tube v1.2... Read more

    Affected Products : hdw-tube
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000134

    Reflected XSS in wordpress plugin hdw-tube v1.2... Read more

    Affected Products : hdw-tube
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000133

    Reflected XSS in wordpress plugin forget-about-shortcode-buttons v1.1.1... Read more

    Affected Products : forget_about_shortcode_buttons
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000132

    Reflected XSS in wordpress plugin enhanced-tooltipglossary v3.2.8... Read more

    Affected Products : tooltip_glossary
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000131

    Reflected XSS in wordpress plugin e-search v1.0... Read more

    Affected Products : e-search esearch
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000130

    Reflected XSS in wordpress plugin e-search v1.0... Read more

    Affected Products : e-search
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000129

    Reflected XSS in wordpress plugin defa-online-image-protector v3.3... Read more

    Affected Products : defa-online-image-protector
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000128

    Reflected XSS in wordpress plugin anti-plagiarism v3.60... Read more

    Affected Products : anti-plagiarism
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000127

    Reflected XSS in wordpress plugin ajax-random-post v2.00... Read more

    Affected Products : ajax-random-post
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 6.1

    MEDIUM
    CVE-2016-1000126

    Reflected XSS in wordpress plugin admin-font-editor v1.8... Read more

    Affected Products : admin-font-editor
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 7.8

    HIGH
    CVE-2016-8101

    The updater subsystem in Intel SSD Toolbox before 3.3.7 allows local users to gain privileges via unspecified vectors.... Read more

    Affected Products : solid-state_drive_toolbox
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 5.5

    MEDIUM
    CVE-2016-8100

    Intel Integrated Performance Primitives (aka IPP) Cryptography before 9.0.4 makes it easier for local users to discover RSA private keys via a side-channel attack.... Read more

    Affected Products : integrated_performance_primitives
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 4.4

    MEDIUM
    CVE-2016-7423

    The mptsas_process_scsi_io_request function in QEMU (aka Quick Emulator), when built with LSI SAS1068 Host Bus emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds write and QEMU process crash) via vectors in... Read more

    Affected Products : qemu
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025

  • 5.9

    MEDIUM
    CVE-2016-7099

    The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof... Read more

    Affected Products : node.js linux_enterprise
    • Published: Oct. 10, 2016
    • Modified: Apr. 12, 2025
Showing 20 of 292803 Results