🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-4127 | Medium | 5.3 |
The Speedup Optimization plugin for WordPress is vulnerable to Missing Authorization in all versions up to and including…
|
— | Mar 21, 2026 |
| CVE-2026-2756 | Medium | 5.0 |
A security vulnerability has been detected in OmniPEMF NeoRhythm up to 20260308. This affects an unknown function of the…
|
— | Mar 21, 2026 |
| CVE-2026-2421 | Medium | 6.5 |
The ilGhera Carta Docente for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to, an…
|
— | Mar 20, 2026 |
| CVE-2026-4472 | Medium | 6.3 |
A security vulnerability has been detected in itsourcecode Online Frozen Foods Ordering System 1.0. This vulnerability a…
|
— | Mar 20, 2026 |
| CVE-2026-4476 | Medium | 6.3 |
A vulnerability was found in Yi Technology YI Home Camera 2 2.1.1_20171024151200. The impacted element is an unknown fun…
|
— | Mar 20, 2026 |
| CVE-2026-4485 | Medium | 6.3 |
A vulnerability has been found in itsourcecode College Management System 1.0. The impacted element is an unknown functio…
|
— | Mar 20, 2026 |
| CVE-2026-4500 | Medium | 6.3 |
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generate_df of the fil…
|
— | Mar 20, 2026 |
| CVE-2026-4505 | Medium | 6.3 |
A vulnerability has been found in eosphoros-ai DB-GPT up to 0.7.5. This issue affects the function module_plugin.refresh…
|
— | Mar 20, 2026 |
| CVE-2026-4506 | Medium | 6.3 |
A vulnerability was found in Mindinventory MindSQL up to 0.2.1. Impacted is the function ask_db of the file mindsql/core…
|
— | Mar 20, 2026 |
| CVE-2026-4507 | Medium | 6.3 |
A vulnerability was determined in Mindinventory MindSQL up to 0.2.1. The affected element is the function ask_db of the …
|
— | Mar 20, 2026 |
| CVE-2026-32844 | Medium | 6.1 |
XinLiangCoder php_api_doc through commit 1ce5bbf contains a reflected cross-site scripting vulnerability in list_method.…
|
— | Mar 20, 2026 |
| CVE-2026-33129 | Medium | 5.9 |
H3 is a minimal H(TTP) framework. Versions 2.0.1-beta.0 through 2.0.0-rc.8 contain a Timing Side-Channel vulnerability i…
|
⚡ Exploit ✅ Patch | Mar 20, 2026 |
| CVE-2026-33051 | Medium | 5.4 |
Craft CMS is a content management system (CMS). In versions 5.9.0-beta.1 through 5.9.10, the revision/draft context menu…
|
✅ Patch | Mar 20, 2026 |
| CVE-2026-3550 | Medium | 5.3 |
The RockPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.17. …
|
— | Mar 20, 2026 |
| CVE-2026-4496 | Medium | 5.3 |
A vulnerability was found in sigmade Git-MCP-Server up to 785aa159f262a02d5791a5d8a8e13c507ac42880. Affected by this vul…
|
— | Mar 20, 2026 |
| CVE-2026-1487 | Medium | 6.5 |
The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to SQL Injection …
|
— | Mar 3, 2026 |
| CVE-2026-3343 | Medium | 6.1 |
A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript…
|
— | Mar 3, 2026 |
| CVE-2026-1336 | Medium | 5.3 |
The AI ChatBot with ChatGPT and Content Generator by AYS plugin for WordPress is vulnerable to unauthorized access and m…
|
— | Mar 3, 2026 |
| CVE-2025-47371 | Medium | 6.5 |
Transient DOS when an LTE RLC packet with invalid TB is received by UE.
|
— | Mar 2, 2026 |
| CVE-2025-47384 | Medium | 6.5 |
Transient DOS when MAC configures config id greater than supported maximum value.
|
— | Mar 2, 2026 |