CVE search
363,484 resultsCVE-2026-54845HIGHWordPress MDTF plugin <= 1.3.8 - Local File Inclusion vulnerabilityEPSS 0.3%CVE-2026-54844HIGHWordPress CheckView Automated Testing plugin <= 2.1.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-54843CRITICALWordPress MDTF plugin <= 1.3.7 - SQL Injection vulnerabilityEPSS 0.2%CVE-2026-54841HIGHWordPress Vitepos plugin <= 3.4.2 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2026-54838HIGHWordPress WC Vendors Marketplace plugin <= 2.6.8 - SQL Injection vulnerabilityEPSS 0.3%CVE-2026-54830HIGHWordPress Five Star Restaurant Reservations plugin <= 2.7.19 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-54828HIGHWordPress Motors plugin <= 1.4.109 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-54823CRITICALWordPress Widget Options plugin <= 4.2.3 - Remote Code Execution (RCE) vulnerabilityEPSS 0.4%CVE-2026-54822HIGHWordPress SALESmanago & Leadoo plugin <= 3.11.2 - SQL Injection vulnerabilityEPSS 0.3%CVE-2026-54821HIGHWordPress Visual Link Preview plugin <= 2.3.1 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2026-27366HIGHWordPress MainWP Child plugin <= 6.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57619MEDIUMWordPress Elementor Website Builder plugin <= 4.1.3 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2026-52690MEDIUMSpoofed answers can mark an authoritative non-EDNS capableEPSS 0.4%CVE-2026-42390MEDIUMZONEMD validation can be bypassedEPSS 0.2%CVE-2026-42388MEDIUMMissing input validation for catalog zonesEPSS 0.4%CVE-2026-42387MEDIUMInsufficient input validation in ZoneToCacheEPSS 0.4%CVE-2026-40012MEDIUMInformation about ECS zero scoped answers might leak to clients that use a specific ECSEPSS 0.3%CVE-2026-33612HIGHZoneToCache can poison the cacheEPSS 0.1%CVE-2026-42004LOWEDNS options smugglingEPSS 0.2%CVE-2026-40211MEDIUMDenial of service via crafted DoH3 queriesEPSS 0.4%