Export limit exceeded: 347166 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 347166 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (347166 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-45836 | 1 W3eden | 1 Download Manager | 2026-04-28 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in W3 Eden, Inc. Download Manager plugin <= 3.2.59 versions. | ||||
| CVE-2022-45847 | 1 Wpassist | 1 Countdown Widget | 2026-04-28 | 6.1 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in WPAssist.Me WordPress Countdown Widget allows Cross-Site Scripting (XSS).This issue affects WordPress Countdown Widget: from n/a through 3.1.9.1. | ||||
| CVE-2022-45845 | 1 Nextendweb | 1 Smart Slider 3 | 2026-04-28 | 4.3 Medium |
| Deserialization of Untrusted Data vulnerability in Nextend Smart Slider 3.This issue affects Smart Slider 3: from n/a through 3.5.1.9. | ||||
| CVE-2022-45839 | 1 Webhelpagency | 1 Wha Puzzle | 2026-04-28 | 5.3 Medium |
| Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WHA WHA Puzzle plugin <= 1.0.9 versions. | ||||
| CVE-2022-45835 | 1 Phonepe | 1 Phonepe | 2026-04-28 | 5.8 Medium |
| Server-Side Request Forgery (SSRF) vulnerability in PhonePe PhonePe Payment Solutions.This issue affects PhonePe Payment Solutions: from n/a through 1.0.15. | ||||
| CVE-2022-45829 | 1 Wp-ecommerce | 1 Easy Wp Smtp | 2026-04-28 | 8.7 High |
| Auth. Path Traversal vulnerability in Easy WP SMTP plugin <= 1.5.1 at WordPress. | ||||
| CVE-2022-45824 | 1 Elbtide | 1 Advanced Booking Calendar | 2026-04-28 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Advanced Booking Calendar plugin <= 1.7.1 on WordPress. | ||||
| CVE-2022-45809 | 1 Quicoto | 1 Thumbs Rating | 2026-04-28 | 5.3 Medium |
| Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating.This issue affects Thumbs Rating: from n/a through 5.0.0. | ||||
| CVE-2022-45807 | 1 Wpvibes | 1 Wp Mail Log | 2026-04-28 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin <= 1.0.1 versions. | ||||
| CVE-2022-45804 | 1 Robogallery | 1 Robo Gallery | 2026-04-28 | 5.4 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.9 leading to galleries hierarchy change, included plugin deactivate & activate. | ||||
| CVE-2022-45377 | 1 Codedropz | 1 Drag And Drop Multiple File Upload For Woocommerce | 2026-04-28 | 6.5 Medium |
| Unrestricted Upload of File with Dangerous Type vulnerability in Glen Don L. Mongaya Drag and Drop Multiple File Upload for WooCommerce.This issue affects Drag and Drop Multiple File Upload for WooCommerce: from n/a through 1.0.8. | ||||
| CVE-2022-45365 | 1 Urosevic | 1 Stock Ticker | 2026-04-28 | 7.1 High |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aleksandar Urošević Stock Ticker allows Reflected XSS.This issue affects Stock Ticker: from n/a through 3.23.2. | ||||
| CVE-2022-45356 | 1 Muffingroup | 1 Betheme | 2026-04-28 | 5.4 Medium |
| Missing Authorization vulnerability in Muffingroup Betheme.This issue affects Betheme: from n/a through 26.6.1. | ||||
| CVE-2022-45354 | 1 Wpchill | 1 Download Monitor | 2026-04-28 | 5.3 Medium |
| Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPChill Download Monitor.This issue affects Download Monitor: from n/a through 4.7.60. | ||||
| CVE-2022-45362 | 1 Paytm | 1 Payment Gateway | 2026-04-28 | 7.2 High |
| Server-Side Request Forgery (SSRF) vulnerability in Paytm Paytm Payment Gateway.This issue affects Paytm Payment Gateway: from n/a through 2.7.0. | ||||
| CVE-2022-45353 | 1 Muffingroup | 1 Betheme | 2026-04-28 | 4.3 Medium |
| Broken Access Control in Betheme theme <= 26.6.1 on WordPress. | ||||
| CVE-2022-45084 | 1 Loginizer | 1 Loginizer | 2026-04-28 | 7.1 High |
| Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Softaculous Loginizer plugin <= 1.7.5 versions. | ||||
| CVE-2022-45083 | 1 Properfraction | 1 Profilepress | 2026-04-28 | 6.6 Medium |
| Deserialization of Untrusted Data vulnerability in ProfilePress Membership Team Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress.This issue affects Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress: from n/a through 4.3.2. | ||||
| CVE-2022-45352 | 1 Muffingroup | 1 Betheme | 2026-04-28 | 5.4 Medium |
| Missing Authorization vulnerability in Muffingroup Betheme.This issue affects Betheme: from n/a through 26.6.1. | ||||
| CVE-2022-45349 | 1 Muffingroup | 1 Betheme | 2026-04-28 | 4.3 Medium |
| Missing Authorization vulnerability in Muffingroup Betheme.This issue affects Betheme: from n/a through 26.6.1. | ||||