CVE Vulnerability Database

Complete database of CVE vulnerabilities. Track critical security threats, exploits and patches. Updated daily from NVD NIST.

KEV (262)

CVE-2026-25401

7.5 HIGH 7.5

Missing Authorization vulnerability in Arni Cinco WPCargo Track & Trace wpcargo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPCargo Track & Trace: from n/a through <= 8.0.2.

25 Mar 2026

Details

CVE-2026-25400

8.8 HIGH 8.8

Deserialization of Untrusted Data vulnerability in thememount Apicona apicona allows Object Injection.This issue affects Apicona: from n/a through <= 24.1.0.

25 Mar 2026 Deserialization

Details

CVE-2026-25398

6.5 MEDIUM 6.5

Missing Authorization vulnerability in Webilia Inc. Vertex Addons for Elementor addons-for-elementor-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Vertex Addons for Elementor: from n/a through <= 1.6.4.

25 Mar 2026

Details

CVE-2026-25397

7.5 HIGH 7.5

Path Traversal: '.../...//' vulnerability in Snowray Software File Uploader for WooCommerce file-uploader-for-woocommerce allows Path Traversal.This issue affects File Uploader for WooCommerce: from n/a through <= 1.0.4.

25 Mar 2026 Path

Details

CVE-2026-25396

7.5 HIGH 7.5

Missing Authorization vulnerability in CoderPress Commerce Coinbase For WooCommerce commerce-coinbase-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Commerce Coinbase For WooCommerce: from n/a through <= 1.6.6.

25 Mar 2026

Details

CVE-2026-25390

6.5 MEDIUM 6.5

Missing Authorization vulnerability in Saad Iqbal New User Approve new-user-approve allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects New User Approve: from n/a through <= 3.2.3.

25 Mar 2026

Details

CVE-2026-25383

7.1 HIGH 7.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Reflected XSS.This issue affects KiviCare: from n/a through <= 3.6.16.

25 Mar 2026

Details

CVE-2026-25382

8.1 HIGH 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in jwsthemes IdealAuto idealauto allows PHP Local File Inclusion.This issue affects IdealAuto: from n/a through …

25 Mar 2026 PHP

Details

CVE-2026-25381

8.1 HIGH 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in jwsthemes LoveDate lovedate allows PHP Local File Inclusion.This issue affects LoveDate: from n/a through …

25 Mar 2026 PHP

Details

CVE-2026-25380

8.1 HIGH 8.1

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in jwsthemes Feedy feedy allows PHP Local File Inclusion.This issue affects Feedy: from n/a through …

25 Mar 2026 PHP

Details

← Previous Page 419 of 3864/3864 Next →

Statistics

Total 38636

Critical 3366

High 12549

Menu

CVE Vulnerability Database

CVE-2026-25401

CVE-2026-25400

CVE-2026-25398

CVE-2026-25397

CVE-2026-25396

CVE-2026-25390

CVE-2026-25383

CVE-2026-25382

CVE-2026-25381

CVE-2026-25380

Statistics

Editor's Choice

Menu

CVE Vulnerability Database

Statistics

Editor's Choice

Stay informed on cybersecurity