CVE Vulnerability Database

Complete database of CVE vulnerabilities. Track critical security threats, exploits and patches. Updated daily from NVD NIST.

KEV (262)

CVE-2026-24391

7.1 HIGH 7.1

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeMakers Car Dealer cardealer allows Reflected XSS.This issue affects Car Dealer: from n/a through <= 1.6.7.

25 Mar 2026

Details

CVE-2026-24382

7.5 HIGH 7.5

Missing Authorization vulnerability in wproyal News Magazine X news-magazine-x allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects News Magazine X: from n/a through <= 1.2.50.

25 Mar 2026

Details

CVE-2026-24378

9.8 CRITICAL 9.8

Deserialization of Untrusted Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Object Injection.This issue affects EventPrime: from n/a through <= 4.2.8.0.

25 Mar 2026 Deserialization

Details

CVE-2026-24376

6.5 MEDIUM 6.5

Missing Authorization vulnerability in Javier Casares WPVulnerability wpvulnerability allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPVulnerability: from n/a through <= 4.2.1.

25 Mar 2026

Details

CVE-2026-24373

8.1 HIGH 8.1

Incorrect Privilege Assignment vulnerability in Metagauss RegistrationMagic custom-registration-form-builder-with-submission-manager allows Privilege Escalation.This issue affects RegistrationMagic: from n/a through <= 6.0.7.1.

25 Mar 2026

Details

CVE-2026-24372

7.5 HIGH 7.5

Authentication Bypass by Spoofing vulnerability in WP Swings Subscriptions for WooCommerce subscriptions-for-woocommerce allows Input Data Manipulation.This issue affects Subscriptions for WooCommerce: from n/a through <= 1.8.10.

25 Mar 2026 Authentication

Details

CVE-2026-24370

6.5 MEDIUM 6.5

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Theme-one The Grid the-grid allows Stored XSS.This issue affects The Grid: from n/a through < 2.8.0.

25 Mar 2026

Details

CVE-2026-24369

7.1 HIGH 7.1

Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through < 2.8.0.

25 Mar 2026

Details

CVE-2026-24364

6.5 MEDIUM 6.5

Missing Authorization vulnerability in weDevs WP User Frontend wp-user-frontend allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP User Frontend: from n/a through <= 4.2.5.

25 Mar 2026

Details

CVE-2026-24363

7.5 HIGH 7.5

Missing Authorization vulnerability in loopus WP Cost Estimation & Payment Forms Builder WP_Estimation_Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cost Estimation & Payment Forms Builder: …

25 Mar 2026

Details

← Previous Page 427 of 3864/3864 Next →

Statistics

Total 38636

Critical 3366

High 12549

Menu

CVE Vulnerability Database

CVE-2026-24391

CVE-2026-24382

CVE-2026-24378

CVE-2026-24376

CVE-2026-24373

CVE-2026-24372

CVE-2026-24370

CVE-2026-24369

CVE-2026-24364

CVE-2026-24363

Statistics

Editor's Choice

Menu

CVE Vulnerability Database

Statistics

Editor's Choice

Stay informed on cybersecurity