CVE Security

medium 5.4

27/05/2026

Vulnérabilité medium détectée - CVE-2026-44924

InfoScale VIOM 9.1.3 allows XSS.

Web

CVE-2026-44924

Lire l'article

high 7.6

27/05/2026

Vulnérabilité high détectée - CVE-2026-5783

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Beyaz Computer Software Design Industry and Trad...

Web

CVE-2026-5783

Lire l'article

high 8.8

27/05/2026

Vulnérabilité high détectée - CVE-2026-24425

Twig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass vulnerability when using a SourcePolicyInterface that allows attackers with tem...

Web

CVE-2026-24425

Lire l'article

high 7.6

27/05/2026

Vulnérabilité high détectée - CVE-2026-42383

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Bli...

Web

CVE-2026-42383

Lire l'article

medium 6.5

27/05/2026

Vulnérabilité medium détectée - CVE-2026-24573

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themeisle Visualizer allows Stored XSS. This is...

Web

CVE-2026-24573

Lire l'article

high 8

27/05/2026

Vulnérabilité high détectée - CVE-2025-11954

Cross-Site request forgery (CSRF) vulnerability in Sitemio Information Technologies Trade Ltd. Co. WISECP allows Cross Site Request Forgery. This iss...

Web

CVE-2025-11954

Lire l'article

medium 5.3

27/05/2026

Vulnérabilité medium détectée - CVE-2026-6728

The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.0.9 via the 'get_stream...

Web

CVE-2026-6728

Lire l'article

medium 5.8

27/05/2026

Vulnérabilité medium détectée - CVE-2026-7385

The Decent Comments WordPress plugin before 3.0.2 does not restrict access to comment author email addresses and post author email addresses via its R...

Web

CVE-2026-7385

Lire l'article

high 8.8

27/05/2026

Vulnérabilité high détectée - CVE-2026-5200

The AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress plugin for WordPress is vulnerable to Missing Authori...

Web

CVE-2026-5200

Lire l'article

medium 4.3

27/05/2026

Vulnérabilité medium détectée - CVE-2026-6405

The Anomify AI – Anomaly Detection and Alerting plugin for WordPress is vulnerable to Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site...

Web

CVE-2026-6405

Lire l'article

unknown

27/05/2026

Vulnérabilité unknown détectée - CVE-2026-9059

NextGEN Gallery version prior to 4.2.1 are vulnerable to authenticated SQL injection via the 'orderby' parameter on the REST API endpoints '/imagely/v...

Web

CVE-2026-9059

Lire l'article

unknown

27/05/2026

Vulnérabilité unknown détectée - CVE-2026-9065

SureCart version prior to 4.2.1 are vulnerable to authenticated SQL injection via multiple parameters ('model_name', 'model_id', 'integration_id', 'pr...

Web

CVE-2026-9065

Lire l'article