| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-23805 | WordPress Media Search Enhanced plugin <= 0.9.1 - SQL Injection vulnerability | Yoren Chang | Media Search Enhanced | - | - | 2026-02-19 08:26:51 | Deep Dive |
| CVE-2025-14027 | Rockwell Automation Recommends Upgrading From 1756-RM2 XT To 1756-RM3 XT | Rockwell Automation | ControlLogix® Redundancy Enhanced Module | - | - | 2026-01-20 13:56:44 | Deep Dive |
| CVE-2025-14405 | PDFsam Enhanced Uncontrolled Search Path Element Local Privilege Escalation Vulnerability | PDFsam | Enhanced | - | - | 2025-12-23 21:21:24 | Deep Dive |
| CVE-2025-14404 | PDFsam Enhanced XLS File Insufficient UI Warning Remote Code Execution Vulnerability | PDFsam | Enhanced | - | - | 2025-12-23 21:21:19 | Deep Dive |
| CVE-2025-14403 | PDFsam Enhanced Launch Insufficient UI Warning Remote Code Execution Vulnerability | PDFsam | Enhanced | - | - | 2025-12-23 21:21:15 | Deep Dive |
| CVE-2025-14402 | PDFsam Enhanced DOC File Insufficient UI Warning Remote Code Execution Vulnerability | PDFsam | Enhanced | - | - | 2025-12-23 21:21:11 | Deep Dive |
| CVE-2025-14401 | PDFsam Enhanced App Out-Of-Bounds Read Remote Code Execution Vulnerability | PDFsam | Enhanced | - | - | 2025-12-23 21:20:23 | Deep Dive |
| CVE-2025-9855 | Enhanced BibliPlug <= 1.3.8 - Authenticated (Contirbutor+) Stored Cross-Site Scripting | zuotian | Enhanced BibliPlug | Medium | 6.4 | 2025-09-11 07:25:03 | Deep Dive |
| CVE-2025-53320 | WordPress Free Downloads EDD plugin <= 1.0.4 - Cross Site Scripting (XSS) Vulnerability | Wp Enhanced | Free Downloads EDD | Medium | 6.5 | 2025-06-27 13:21:38 | Deep Dive |
| CVE-2025-50034 | WordPress Enhanced Blocks – Page Builder Blocks for Gutenberg plugin <= 1.4.1 - Broken Access Control Vulnerability | Mahmudul Hasan Arif | Enhanced Blocks – Page Builder Blocks for Gutenberg | Medium | 6.5 | 2025-06-20 15:03:54 | Deep Dive |
| CVE-2025-46543 | WordPress Enhanced Paypal Shortcodes plugin <= 0.5a - Cross Site Scripting (XSS) vulnerability | CharlyLeetham | Enhanced Paypal Shortcodes | Medium | 6.5 | 2025-05-19 17:04:06 | Deep Dive |
| CVE-2025-39427 | WordPress WP Post to PDF Enhanced plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability | Beth Tucker Long | WP Post to PDF Enhanced | Medium | 5.9 | 2025-04-17 15:17:03 | Deep Dive |
| CVE-2025-23946 | WordPress Enhanced YouTube Shortcode plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability | Le-Pixel-Solitaire | Enhanced YouTube Shortcode | Medium | 6.5 | 2025-01-16 20:08:06 | Deep Dive |
| CVE-2025-23470 | WordPress Visit Site Link enhanced plugin <= 1.0 - CSRF to Stored XSS vulnerability | xavsio4 | Visit Site Link enhanced | High | 7.1 | 2025-01-16 20:05:48 | Deep Dive |
| CVE-2023-23823 | WordPress Enhanced Text Widget plugin <= 1.5.8 - Broken Access Control vulnerability | cl272 | Enhanced Text Widget | Medium | 4.3 | 2024-12-09 11:31:50 | Deep Dive |
| CVE-2023-49192 | WordPress Enhanced Text Widget plugin <= 1.6.3 - Broken Access Control vulnerability | cl272 | Enhanced Text Widget | 中危 | - | 2024-12-09 11:30:19 | Deep Dive |
| CVE-2019-25213 | Advanced Access Manager <= 5.9.8.1 - Unauthenticated Arbitrary File Read | vasyltech | Advanced Access Manager – Access Governance for WordPress | Critical | 9.8 | 2024-10-16 06:43:32 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-8091 | Enhanced Search Box <= 0.6.1 - Settings Update via CSRF | Unknown | Enhanced Search Box | 中危 | - | 2024-09-17 06:00:06 | Deep Dive |
| CVE-2024-3611 | Toolbar Extras for Elementor & More – WordPress Admin Bar Enhanced <= 1.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | daveshine | Toolbar Extras for Elementor & More – WordPress Admin Bar Enhanced | Medium | 6.4 | 2024-05-22 05:32:47 | Deep Dive |