| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-27397 | WordPress Really Simple Security Pro plugin <= 9.5.4.0 - Insecure Direct Object References (IDOR) vulnerability | Really Simple Plugins B.V. | Really Simple Security Pro | Medium | 6.5 | 2026-03-19 05:30:19 | Deep Dive |
| CVE-2026-27413 | WordPress Profile Builder Pro plugin < 3.14.0 - SQL Injection vulnerability | Cozmoslabs | Profile Builder Pro | Critical | 9.3 | 2026-03-19 05:28:13 | Deep Dive |
| CVE-2017-20220 | Serviio PRO 1.8 Unauthenticated Password Change via REST API | Serviio | Serviio PRO | High | 7.5 | 2026-03-15 18:34:28 | Deep Dive |
| CVE-2017-20219 | Serviio PRO 1.8 DOM-based Cross-Site Scripting via mediabrowser | Serviio | Serviio PRO | Medium | 6.1 | 2026-03-15 18:34:27 | Deep Dive |
| CVE-2017-20218 | Serviio PRO 1.8 Local Privilege Escalation via Unquoted Path | Serviio | Serviio PRO | High | 7.8 | 2026-03-15 18:34:26 | Deep Dive |
| CVE-2017-20217 | Serviio PRO 1.8 REST API Information Disclosure | Serviio | Serviio PRO | High | 7.5 | 2026-03-15 18:34:25 | Deep Dive |
| CVE-2026-32443 | WordPress Product Feed PRO for WooCommerce plugin <= 13.5.2 - Cross Site Request Forgery (CSRF) vulnerability | Josh Kohlbach | Product Feed PRO for WooCommerce | 中危 | - | 2026-03-13 11:42:20 | Deep Dive |
| CVE-2026-32428 | WordPress Popup Like box plugin <= 3.7.7 - Broken Access Control vulnerability | Ays Pro | Popup Like box | 中危 | - | 2026-03-13 11:42:18 | Deep Dive |
| CVE-2026-32402 | WordPress Image Slider by Ays plugin <= 2.7.1 - Broken Access Control vulnerability | Ays Pro | Image Slider by Ays | 中危 | - | 2026-03-13 11:42:13 | Deep Dive |
| CVE-2026-32342 | WordPress Quiz Maker plugin <= 6.7.1.2 - Cross Site Request Forgery (CSRF) vulnerability | Ays Pro | Quiz Maker | 中危 | - | 2026-03-13 11:41:57 | Deep Dive |
| CVE-2026-32332 | WordPress Easy Form plugin <= 2.7.9 - Broken Access Control vulnerability | Ays Pro | Easy Form | 中危 | - | 2026-03-13 11:41:56 | Deep Dive |
| CVE-2026-32329 | WordPress Advanced Related Posts plugin <= 1.9.1 - Broken Access Control vulnerability | Ays Pro | Advanced Related Posts | 中危 | - | 2026-03-13 11:41:55 | Deep Dive |
| CVE-2026-31922 | WordPress Fox LMS plugin <= 1.0.6.3 - SQL Injection vulnerability | Ays Pro | Fox LMS | 中危 | - | 2026-03-13 11:41:55 | Deep Dive |
| CVE-2026-22199 | Voltronic Power SNMP Web Pro 1.1 Path Traversal via upload.cgi | Voltronic Power | SNMP Web Pro | High | 7.5 | 2026-03-13 01:18:07 | Deep Dive |
| CVE-2026-22192 | Voltronic Power SNMP Web Pro 1.1 Authentication Bypass via localStorage | Voltronic Power | SNMP Web Pro | Critical | 9.9 | 2026-03-13 01:18:04 | Deep Dive |
| CVE-2019-25473 | Clinic Pro SQL Injection via monthly_expense_overview month Parameter | Softwebinternational | Clinic Pro | High | 7.1 | 2026-03-12 15:36:38 | Deep Dive |
| CVE-2026-3966 | 648540858 wvp-GB28181-pro IP Address ABLMediaNodeServerService.java getDownloadFilePath server-side request forgery | 648540858 | wvp-GB28181-pro | Medium | 6.3 | 2026-03-12 00:02:08 | Deep Dive |
| CVE-2019-25467 | Verypdf docPrint Pro 8.0 Local SEH Buffer Overflow | Verypdf | docPrint Pro | High | 8.4 | 2026-03-11 18:23:12 | Deep Dive |
| CVE-2026-27269 | Premiere Pro | Out-of-bounds Read (CWE-125) | Adobe | Premiere Pro | High | 7.8 | 2026-03-10 18:33:46 | Deep Dive |
| CVE-2026-1261 | MetForm Pro <= 3.9.6 - Unauthenticated Stored Cross-Site Scripting | Wpmet | MetForm Pro | High | 7.2 | 2026-03-10 09:25:30 | Deep Dive |