Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
6.1 MEDIUM
CVE-2023-54361 — Joomla iProperty Real Estate 4.1.1 Reflected XSS via filter_keyword

Joomla iProperty Real Estate 4.1.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the filter_keyword parameter. Attackers ca…

Remote | Cross-Site Scripting
Apr 09, 2026 Apr 15, 2026
Apr 09, 2026
Apr 15, 2026
6.1 MEDIUM
CVE-2023-54360 — Joomla JLex Review 6.0.1 Reflected XSS via review_id Parameter

Joomla JLex Review 6.0.1 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by manipulating the review_id URL parameter. Attackers can craft mal…

Remote | Cross-Site Scripting
Apr 09, 2026 Apr 15, 2026
Apr 09, 2026
Apr 15, 2026
8.8 HIGH
CVE-2023-54359 — WordPress adivaha Travel Plugin 2.3 SQL Injection via pid

WordPress adivaha Travel Plugin 2.3 contains a time-based blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'pid…

Remote | Injection
Apr 09, 2026 Apr 15, 2026
Apr 09, 2026
Apr 15, 2026
6.1 MEDIUM
CVE-2023-54358 — WordPress adivaha Travel Plugin 2.3 Reflected XSS via isMobile

WordPress adivaha Travel Plugin 2.3 contains a reflected cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by manipulating the isMobile parameter. A…

Remote | Cross-Site Scripting
Apr 09, 2026 Apr 15, 2026
Apr 09, 2026
Apr 15, 2026
Showing 20 of 5684 Results