Export limit exceeded: 74819 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (74819 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-37435 | 1 Rarathemes | 1 Perfect Portfolio | 2026-04-01 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in raratheme Perfect Portfolio perfect-portfolio allows Cross Site Request Forgery.This issue affects Perfect Portfolio: from n/a through <= 1.2.0. | ||||
| CVE-2024-37412 | 1 Blossomthemes | 1 Blossom Shop | 2026-04-01 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in blossomthemes Blossom Shop blossom-shop allows Cross Site Request Forgery.This issue affects Blossom Shop: from n/a through <= 1.1.7. | ||||
| CVE-2024-37410 | 1 Ideabox | 1 Powerpack For Beaver Builder | 2026-04-01 | 7.2 High |
| Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in IdeaBox Creations PowerPack Lite for Beaver Builder powerpack-addon-for-beaver-builder.This issue affects PowerPack Lite for Beaver Builder: from n/a through <= 1.3.0.3. | ||||
| CVE-2024-37102 | 2 Blossomthemes, Wordpress | 2 Vilva, Wordpress | 2026-04-01 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in blossomthemes Vilva vilva allows Cross Site Request Forgery.This issue affects Vilva: from n/a through <= 1.2.2. | ||||
| CVE-2024-37093 | 1 Stylemixthemes | 1 Masterstudy Lms | 2026-04-01 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in Stylemix MasterStudy LMS masterstudy-lms-learning-management-system allows Cross Site Request Forgery.This issue affects MasterStudy LMS: from n/a through <= 3.2.1. | ||||
| CVE-2024-35729 | 1 Tickera | 1 Tickera | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in Tickera Tickera tickera-event-ticketing-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Tickera: from n/a through <= 3.5.2.6. | ||||
| CVE-2024-35723 | 1 Arwebdesign | 1 Dashboard To-do List | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in Andrew Dashboard To-Do List dashboard-to-do-list.This issue affects Dashboard To-Do List: from n/a through <= 1.2.0. | ||||
| CVE-2024-35674 | 1 Unlimited-elements | 2 Unlimited Elements For Elementor, Unlimited Elements For Elementor \(free Widgets\, Addons\, Templates\) | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates) unlimited-elements-for-elementor.This issue affects Unlimited Elements For Elementor (Free Widgets, Addons, Templates): from n/a through <= 1.5.109. | ||||
| CVE-2024-35659 | 1 Iqonic | 1 Kivicare | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KiviCare: from n/a through <= 3.6.6. | ||||
| CVE-2024-35650 | 1 Melapress | 1 Melapress Login Security | 2026-04-01 | 7.2 High |
| Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Melapress MelaPress Login Security melapress-login-security.This issue affects MelaPress Login Security: from n/a through <= 1.3.0. | ||||
| CVE-2024-33572 | 1 Posimyth | 1 Nexter Blocks | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in POSIMYTH Nexter Blocks the-plus-addons-for-block-editor.This issue affects Nexter Blocks: from n/a through <= 3.2.5. | ||||
| CVE-2024-33570 | 1 Wpmet | 1 Metform Elementor Contact Form Builder | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in Roxnor Metform metform.This issue affects Metform: from n/a through <= 3.8.3. | ||||
| CVE-2024-32824 | 1 Evergreencontentposter | 1 Evergreen Content Poster | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in Evergreen Content Poster Evergreen Content Poster evergreen-content-poster.This issue affects Evergreen Content Poster: from n/a through <= 1.4.2. | ||||
| CVE-2024-32778 | 1 Contest-gallery | 1 Contest Gallery | 2026-04-01 | 8.1 High |
| Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery contest-gallery.This issue affects Contest Gallery: from n/a through <= 21.3.4. | ||||
| CVE-2024-32706 | 1 Reputeinfosystems | 1 Arforms | 2026-04-01 | 8.8 High |
| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in reputeinfosystems ARForms arforms.This issue affects ARForms: from n/a through <= 6.4. | ||||
| CVE-2024-32705 | 1 Reputeinfosystems | 1 Arforms | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in reputeinfosystems ARForms arforms.This issue affects ARForms: from n/a through <= 6.4. | ||||
| CVE-2024-32703 | 1 Reputeinfosystems | 1 Arforms | 2026-04-01 | 8.1 High |
| Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in reputeinfosystems ARForms arforms.This issue affects ARForms: from n/a through <= 6.4. | ||||
| CVE-2024-32701 | 1 Instawp | 1 Instawp Connect | 2026-04-01 | 8.8 High |
| Missing Authorization vulnerability in InstaWP InstaWP Connect instawp-connect.This issue affects InstaWP Connect: from n/a through <= 0.1.0.24. | ||||
| CVE-2024-32445 | 1 Saleswonder | 1 Webinarignition | 2026-04-01 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition.This issue affects WebinarIgnition: from n/a through <= 3.05.8. | ||||
| CVE-2024-31382 | 1 Creativethemes | 1 Blocksy | 2026-04-01 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in creativethemeshq Blocksy blocksy.This issue affects Blocksy: from n/a through <= 2.0.22. | ||||