Vulnerabilidades en UNKNOWN

4241 resultados
CVE-2026-11875MEDIUMWP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated Support Ticket Access via Session Cookie ForgeryEPSS 0.1%CVE-2025-15611MEDIUMPopup Box AYS Pro < 5.5.0 - Admin+ Stored Cross-Site Scripting (XSS) via CSRFEPSS 0.1%CVE-2026-11869MEDIUMWP DSGVO Tools (GDPR) < 3.1.40 - Unauthenticated Sensitive Information Disclosure via Subject Access RequestEPSS 0.1%CVE-2025-12685MEDIUMWPBookit <= 1.0.7 - Customer Deletion via CSRFEPSS 0.1%CVE-2026-8378MEDIUMFrontend File Manager Plugin <= 23.6 - Subscriber+ Stored Cross-Site Scripting via File RenameEPSS 0.1%CVE-2026-10531MEDIUMAI Share & Summarize < 2.0.4 - Contributor+ Stored XSS via title_style Shortcode AttributeEPSS 0.1%CVE-2026-0658MEDIUMFive Star Restaurant Reservations < 2.7.9 - Arbitrary Bookings Deletion via CSRFEPSS 0.1%CVE-2026-12517MEDIUMFediverse Embeds < 1.5.8 - Unauthenticated SSRF via Site Info EndpointEPSS 0.1%CVE-2026-12516MEDIUMFediverse Embeds < 1.5.8 - Unauthenticated SSRF via Media ProxyEPSS 0.1%CVE-2025-11154MEDIUMIDonate < 2.1.13 - Unauthenticated User DeletionEPSS 0.1%CVE-2026-10530MEDIUMPie Register < 3.8.4.10 - Unauthenticated Email Verification Bypass via Predictable TokenEPSS 0.1%CVE-2026-1508MEDIUMCourt Reservation < 1.10.9 - Event Deletion via CSRFEPSS 0.1%CVE-2025-9116MEDIUMWPS Visitor Counter Plugin <= 1.4.8 - Reflected XSS via $_SERVER['REQUEST_URI']EPSS 0.1%CVE-2025-12696MEDIUMHelloLeads CRM Form Shortcode <= 1.0 - Unauthenticated Settings ResetEPSS 0.1%CVE-2026-7859MEDIUMMotors Car Dealership & Classified Listings < 1.4.110 - Unauthenticated Post-Meta Write via stm_ajax_add_a_car_mediaEPSS 0.1%CVE-2025-6790MEDIUMQSM < 10.2.3 - Template Creation via CSRFEPSS 0.1%CVE-2025-10684MEDIUMConstruction Light < 1.6.8 - Subscriber+ Arbitrary Plugin ActivationEPSS 0.1%CVE-2026-9676MEDIUMf4 Post Tree < 2.0.5 - Subscriber+ Arbitrary Post Parent/Menu Order ModificationEPSS 0.1%CVE-2026-1128MEDIUMWP eCommerce <= 3.15.1 - Coupon Deletion via CSRFEPSS 0.1%CVE-2026-12685HIGHEscortWP <= 3.6.2 - Content Deletion via Vendor-Authored BackdoorEPSS