Export limit exceeded: 346650 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 346650 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (346650 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-40213 | 2026-04-23 | 4.3 Medium | ||
| Missing Authorization vulnerability in Damian Góra Justified Gallery justified-gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Justified Gallery: from n/a through <= 1.7.3. | ||||
| CVE-2023-40209 | 2 Himalaya Saxena, Himalayasaxena | 2 Highcompress Image Compressor, Highcompress Image Compressor | 2026-04-23 | 6.5 Medium |
| Missing Authorization vulnerability in himalayasaxena Highcompress Image Compressor high-compress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Highcompress Image Compressor: from n/a through <= 6.1.2. | ||||
| CVE-2023-40205 | 1 Pixelgrade | 1 Pixtypes | 2026-04-23 | 7.1 High |
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in pixelgrade PixTypes pixtypes allows DOM-Based XSS.This issue affects PixTypes: from n/a through <= 1.4.15. | ||||
| CVE-2023-40203 | 1 Mailmunch | 1 Mailchimp Forms | 2026-04-23 | 4.3 Medium |
| Missing Authorization vulnerability in mailmunch MailChimp Forms by MailMunch mailchimp-forms-by-mailmunch allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MailChimp Forms by MailMunch: from n/a through <= 3.1.4. | ||||
| CVE-2023-40011 | 2 Stylemixthemes, Wordpress | 2 Cost Calculator Builder, Wordpress | 2026-04-23 | 5.4 Medium |
| Missing Authorization vulnerability in Stylemix Cost Calculator Builder cost-calculator-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cost Calculator Builder: from n/a through <= 3.1.42. | ||||
| CVE-2023-40005 | 1 Awesomemotive | 1 Easy Digital Downloads | 2026-04-23 | 9.8 Critical |
| Missing Authorization vulnerability in Syed Balkhi Easy Digital Downloads easy-digital-downloads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easy Digital Downloads: from n/a through <= 3.1.5. | ||||
| CVE-2023-40003 | 1 Wedevs | 1 Wp Project Manager | 2026-04-23 | 9.8 Critical |
| Missing Authorization vulnerability in weDevs WP Project Manager wedevs-project-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Project Manager: from n/a through <= 2.6.7. | ||||
| CVE-2023-40001 | 1 Wordpress | 1 Wordpress | 2026-04-23 | 4.3 Medium |
| Missing Authorization vulnerability in StellarWP iThemes Sync ithemes-sync allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects iThemes Sync: from n/a through <= 2.1.13. | ||||
| CVE-2023-39997 | 1 Supsystic | 1 Popup | 2026-04-23 | 5.3 Medium |
| Missing Authorization vulnerability in supsystic Popup by Supsystic popup-by-supsystic allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup by Supsystic: from n/a through <= 1.10.19. | ||||
| CVE-2023-39996 | 1 Wordpress | 1 Wordpress | 2026-04-23 | 5.3 Medium |
| Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Accordion and Accordion Slider accordion-and-accordion-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Accordion and Accordion Slider: from n/a through <= 1.2.4. | ||||
| CVE-2023-39995 | 1 Wordpress | 1 Wordpress | 2026-04-23 | 4.3 Medium |
| Missing Authorization vulnerability in WP OnlineSupport, Essential Plugin Portfolio and Projects portfolio-and-projects allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Portfolio and Projects: from n/a through <= 1.3.7. | ||||
| CVE-2023-39994 | 1 Reputeinfosystems | 1 Armember | 2026-04-23 | 4.3 Medium |
| Missing Authorization vulnerability in reputeinfosystems ARMember Premium armember allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ARMember Premium: from n/a through <= 5.9.2. | ||||
| CVE-2023-39920 | 2026-04-23 | N/A | ||
| Missing Authorization vulnerability in Themeisle Redirection for Contact Form 7 wpcf7-redirect allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Redirection for Contact Form 7: from n/a through <= 2.9.2. | ||||
| CVE-2023-39305 | 2026-04-23 | N/A | ||
| Missing Authorization vulnerability in Dash Labs Yet Another Stars Rating yet-another-stars-rating allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Yet Another Stars Rating: from n/a through <= 3.4.3. | ||||
| CVE-2023-38514 | 2026-04-23 | 4.3 Medium | ||
| Missing Authorization vulnerability in Inisev Social Share Icons & Social Share Buttons ultimate-social-media-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Social Share Icons & Social Share Buttons: from n/a through <= 3.5.7. | ||||
| CVE-2023-38512 | 1 Wpstream | 1 Wpstream | 2026-04-23 | 8.8 High |
| Cross-Site Request Forgery (CSRF) vulnerability in wpstream WpStream wpstream allows Cross Site Request Forgery.This issue affects WpStream: from n/a through <= 4.5.4. | ||||
| CVE-2023-38483 | 2026-04-23 | 5.4 Medium | ||
| Missing Authorization vulnerability in dylanblokhuis Instant CSS instant-css allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Instant CSS: from n/a through <= 1.1.4. | ||||
| CVE-2023-38480 | 2026-04-23 | 5.3 Medium | ||
| Missing Authorization vulnerability in certaindev Booster Elementor Addons booster-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster Elementor Addons: from n/a through <= 1.4.9. | ||||
| CVE-2023-38479 | 1 Wordpress | 1 Wordpress | 2026-04-23 | 5.3 Medium |
| Missing Authorization vulnerability in codents Simple Googlebot Visit simple-googlebot-visit allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Googlebot Visit: from n/a through <= 1.2.4. | ||||
| CVE-2023-38477 | 1 Wordpress | 1 Wordpress | 2026-04-23 | 4.3 Medium |
| Missing Authorization vulnerability in stasionok QR code MeCard/vCard generator wp-qrcode-me-v-card allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects QR code MeCard/vCard generator: from n/a through <= 1.6.0. | ||||