🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-3333 | Medium | 6.4 |
The MinhNhut Link Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'linkgate' …
|
— | Mar 21, 2026 |
| CVE-2026-3554 | Medium | 6.4 |
The Sherk Custom Post Type Displays plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' sh…
|
— | Mar 21, 2026 |
| CVE-2026-2430 | Medium | 6.4 |
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lazy-loading image processing …
|
— | Mar 21, 2026 |
| CVE-2026-1822 | Medium | 6.4 |
The WP NG Weather plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ng-weather' shortc…
|
— | Mar 21, 2026 |
| CVE-2026-1889 | Medium | 6.4 |
The Outgrow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute of the 'outgrow' sh…
|
— | Mar 21, 2026 |
| CVE-2026-1886 | Medium | 6.4 |
The Go Night Pro | WordPress Dark Mode Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin'…
|
— | Mar 21, 2026 |
| CVE-2026-1891 | Medium | 6.4 |
The Simple Football Scoreboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ytmr_fb_scoreb…
|
— | Mar 21, 2026 |
| CVE-2026-4022 | Medium | 6.4 |
The Show Posts list – Easy designs, filters and more plugin for WordPress is vulnerable to Stored Cross-Site Scripting v…
|
— | Mar 21, 2026 |
| CVE-2026-4084 | Medium | 6.4 |
The fyyd podcast shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'fyyd-podcast', 'f…
|
— | Mar 21, 2026 |
| CVE-2026-4072 | Medium | 6.4 |
The WordPress PayPal Donation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'donate' shortco…
|
— | Mar 21, 2026 |
| CVE-2026-3350 | Medium | 6.4 |
The Image Alt Text Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in all v…
|
— | Mar 21, 2026 |
| CVE-2026-2352 | Medium | 6.4 |
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ao_post_preload' meta value i…
|
— | Mar 21, 2026 |
| CVE-2026-4516 | Medium | 6.3 |
A vulnerability was found in Foundation Agents MetaGPT up to 0.8.1. This vulnerability affects unknown code of the file …
|
— | Mar 21, 2026 |
| CVE-2026-4515 | Medium | 6.3 |
A vulnerability has been found in Foundation Agents MetaGPT up to 0.8.1. This affects the function code_generate of the …
|
— | Mar 21, 2026 |
| CVE-2026-4514 | Medium | 6.3 |
A flaw has been found in PbootCMS up to 3.2.12. Affected by this issue is some unknown functionality of the file apps/ad…
|
— | Mar 21, 2026 |
| CVE-2026-4513 | Medium | 6.3 |
A vulnerability was detected in vanna-ai vanna up to 2.0.2. Affected by this vulnerability is the function ask of the fi…
|
— | Mar 21, 2026 |
| CVE-2026-4511 | Medium | 6.3 |
A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. Affected is the function exec of the file /src…
|
— | Mar 21, 2026 |
| CVE-2026-4509 | Medium | 6.3 |
A security flaw has been discovered in PbootCMS up to 3.2.12. This affects an unknown function of the file core/function…
|
— | Mar 21, 2026 |
| CVE-2019-25544 | Medium | 6.2 |
Pidgin 2.13.0 contains a denial of service vulnerability that allows local attackers to crash the application by providi…
|
— | Mar 21, 2026 |
| CVE-2019-25545 | Medium | 6.2 |
Terminal Services Manager 3.2.1 contains a local buffer overflow vulnerability that allows attackers to crash the applic…
|
— | Mar 21, 2026 |