Advanced Threat Data Export
Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.
Data export is locked. Upgrade your package to enable filtering and downloading.
🔔 Premium Features
🔍 Filter Threats
| Title | Severity | PoC | Actively Exploited | Source | Date |
|---|---|---|---|---|---|
| CVE-2026-5067 A remote, unauthenticated attacker can trigger memory corruption in Zephyr's HTTP server WebSocket upgrade path by sending a crafted Sec-WebSocke... | CRITICAL | ????? | ????? | NVD | 3 days ago |
| CVE-2026-4986 The WPForms WordPress plugin before 1.10.0.5 does not verify the authenticity of incoming PayPal webhook events before processing them, allowing unau... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-41539 A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit t... | UNKNOWN | ????? | ????? | NVD | 3 days ago |
| CVE-2026-9662 The Recover Exit For WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to and including 1.0.3. This is due to ... | HIGH | ????? | ????? | NVD | 3 days ago |
| CVE-2026-9185 The 6Storage Rentals plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and including 2.22.0... | HIGH | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8977 The WP GDPR Cookie Consent plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ninja_gdpr_ajax_actions' AJAX action i... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8940 The WP Meta Sort Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.9. This is due to miss... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8910 The WP Emoticon Rating plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.1. This is due to mi... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8909 The WpMobi plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.0.3. This is due to missing or inc... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8907 The WP-Ultimate-Map plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1. This is due to missing non... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8904 The FastPicker, an order picker and order management system (oms) for WooCommerce on steroids plugin for WordPress is vulnerable to Cross-Site Request... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8902 The AJAX Report Comments plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.4. This is due to ... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8895 The kk blog card plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'blog-card' shortcode in all versio... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8883 The Global Body Mass Index Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gbmicalc' shortcode in vers... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8882 The WP ApplicantStack Jobs Display plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Shortcode Attributes in all versions up to, a... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8880 The RomanCart Ecommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'blclass' attribute (and other attributes)... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8841 The Extra Settings for RocketChat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rocketchat' shortcode's &#... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-8499 The Helpfulcrowd Product Reviews plugin for WordPress is vulnerable to Authorization Bypass via PHP Type Juggling in versions up to, and including, 1.... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-7662 The ePaperFlip Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'publicationid' attribute of the `epaperf... | MEDIUM | ????? | ????? | NVD | 3 days ago |
| CVE-2026-41980 Permission control vulnerability in the file preview module. Impact: Successful exploitation of this vulnerability may affect service confidentiality... | MEDIUM | ????? | ????? | NVD | 3 days ago |