Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2026-02-24
CVE-2026-25404 - WP Job Manager Plugin
Missing Authorization vulnerability in Automattic WP Job Manager wp-job-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Manager: from n/a through
PLUGIN
WP Job Manager
CVE-2026-25404
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25411 - Revision Manager TMC Plugin
Cross-Site Request Forgery (CSRF) vulnerability in themastercut Revision Manager TMC revision-manager-tmc allows Cross Site Request Forgery.This issue affects Revision Manager TMC: from n/a through
PLUGIN
Revision Manager TMC
CVE-2026-25411
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25410 - WP-CORS Plugin
Missing Authorization vulnerability in tstephenson WP-CORS wp-cors allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP-CORS: from n/a through
PLUGIN
WP-CORS
CVE-2026-25410
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25409 - JAMstack Deployments Plugin
Missing Authorization vulnerability in crgeary JAMstack Deployments wp-jamstack-deployments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JAMstack Deployments: from n/a through
PLUGIN
JAMstack Deployments
CVE-2026-25409
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25407 - Cookiebot Plugin
Missing Authorization vulnerability in cookiebot Cookiebot cookiebot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cookiebot: from n/a through
PLUGIN
Cookiebot
CVE-2026-25407
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25402 - Knowledge Base for Documentation, FAQs with AI Assistance Plugin
Missing Authorization vulnerability in echoplugins Knowledge Base for Documentation, FAQs with AI Assistance echo-knowledge-base allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Knowledge Base for Documentation, FAQs with AI Assistance: from n/a through
PLUGIN
Knowledge Base for Documentation, FAQs with AI Assistance
CVE-2026-25402
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25391 - WP Wand Plugin
Missing Authorization vulnerability in WP Grids WP Wand ai-content-generation allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Wand: from n/a through
PLUGIN
WP Wand
CVE-2026-25391
Risk Score
Threat Entry
Updated 2026-02-27
CVE-2026-25389 - EventPrime Plugin
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through
PLUGIN
EventPrime
CVE-2026-25389
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-25392 - Update URLs – Quick and Easy way to search old links and replace them with new links in WordPress Plugin
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in KaizenCoders Update URLs – Quick and Easy way to search old links and replace them with new links in WordPress update-urls allows Phishing.This issue affects Update URLs – Quick and Easy way to search old links and replace them with new links in WordPress: from n/a through
PLUGIN
Update URLs – Quick and Easy way to search old links and replace them with new links in WordPress
CVE-2026-25392
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25399 - Serious Slider Plugin
Missing Authorization vulnerability in CryoutCreations Serious Slider cryout-serious-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Serious Slider: from n/a through
PLUGIN
Serious Slider
CVE-2026-25399
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25395 - Business Roy Plugin
Missing Authorization vulnerability in ikreatethemes Business Roy business-roy allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Business Roy: from n/a through
PLUGIN
Business Roy
CVE-2026-25395
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25394 - Fitness FSE Plugin
Missing Authorization vulnerability in sparklewpthemes Fitness FSE fitness-fse allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fitness FSE: from n/a through
PLUGIN
Fitness FSE
CVE-2026-25394
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25393 - Hello FSE Plugin
Missing Authorization vulnerability in sparklewpthemes Hello FSE hello-fse allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Hello FSE: from n/a through
PLUGIN
Hello FSE
CVE-2026-25393
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25378 - Nelio AB Testing Plugin
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nelio Software Nelio AB Testing nelio-ab-testing allows Blind SQL Injection.This issue affects Nelio AB Testing: from n/a through
PLUGIN
Nelio AB Testing
CVE-2026-25378
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25385 - URL Shortify Plugin
Server-Side Request Forgery (SSRF) vulnerability in KaizenCoders URL Shortify url-shortify allows Server Side Request Forgery.This issue affects URL Shortify: from n/a through
PLUGIN
URL Shortify
CVE-2026-25385
Risk Score
Threat Entry
Updated 2026-02-20
CVE-2026-25388 - Ads Pro Plugin
Missing Authorization vulnerability in scripteo Ads Pro ap-plugin-scripteo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ads Pro: from n/a through
PLUGIN
Ads Pro
CVE-2026-25388
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25386 - Ally Plugin
Missing Authorization vulnerability in Elementor Ally pojo-accessibility allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ally: from n/a through
PLUGIN
Ally
CVE-2026-25386
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25384 - WP-Lister Lite for eBay Plugin
Missing Authorization vulnerability in WP Lab WP-Lister Lite for eBay wp-lister-for-ebay allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP-Lister Lite for eBay: from n/a through
PLUGIN
WP-Lister Lite for eBay
CVE-2026-25384
Risk Score
Threat Entry
Updated 2026-02-26
CVE-2026-25387 - Image Optimizer by Elementor Plugin
Missing Authorization vulnerability in Elementor Image Optimizer by Elementor image-optimization allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Image Optimizer by Elementor: from n/a through
PLUGIN
Image Optimizer by Elementor
CVE-2026-25387
Risk Score
Threat Entry
Updated 2026-02-19
CVE-2026-25375 - Image Photo Gallery Final Tiles Grid Plugin
Missing Authorization vulnerability in WP Chill Image Photo Gallery Final Tiles Grid final-tiles-grid-gallery-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Image Photo Gallery Final Tiles Grid: from n/a through
PLUGIN
Image Photo Gallery Final Tiles Grid
CVE-2026-25375
Risk Score