CVE ID :CVE-2026-42773 Published : May 25, 2026, 10:35 p.m. | 2 hours, 31 minutes ago Description :Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in eMagicOne eMagicOne Store…
CVE-2026-42774 – WordPress JetEngine plugin <= 3.8.8.1 – SQL Injection vulnerability
CVE ID :CVE-2026-42774 Published : May 25, 2026, 10:34 p.m. | 2 hours, 32 minutes ago Description :Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Crocoblock JetEngine allows…
CVE-2026-45216 – WordPress Smart Manager plugin <= 8.85.0 – Privilege Escalation vulnerability
CVE ID :CVE-2026-45216 Published : May 25, 2026, 10:30 p.m. | 2 hours, 36 minutes ago Description :Incorrect Privilege Assignment vulnerability in StoreApps Smart Manager allows Privilege Escalation. This issue affects Smart Manager: from…
CVE-2026-48837 – WordPress Unlimited Elements For Elementor plugin <= 2.0.8 – SQL Injection vulnerability
CVE ID :CVE-2026-48837 Published : May 25, 2026, 10:05 p.m. | 3 hours, 1 minute ago Description :Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Unlimited Elements For…
CVE-2026-48842 – Roundcube Webmail SQL Injection
CVE ID :CVE-2026-48842 Published : May 25, 2026, 7:06 p.m. | 5 hours, 59 minutes ago Description :Roundcube Webmail 1.6.x before 1.6.16 and 1.7.x before 1.7.1 has Pre-authentication SQL injection in the virtuser_query plugin…
CVE-2018-25357 – Dolibarr ERP CRM 7.0.3 Remote Code Evaluation via install/step1.php
CVE ID :CVE-2018-25357 Published : May 23, 2026, 6:32 p.m. | 6 hours, 28 minutes ago Description :Dolibarr ERP CRM 7.0.3 contains a remote code evaluation vulnerability that allows unauthenticated attackers to execute arbitrary…
CVE-2018-25358 – D-Link DIR601 2.02NA Credential Disclosure via my_cgi.cgi
CVE ID :CVE-2018-25358 Published : May 23, 2026, 6:30 p.m. | 6 hours, 29 minutes ago Description :D-Link DIR601 2.02NA contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration data…
CVE-2018-25356 – SIPp 3.6 Local Buffer Overflow via Command-line Arguments
CVE ID :CVE-2018-25356 Published : May 23, 2026, 6:30 p.m. | 6 hours, 29 minutes ago Description :SIPp 3.6 and earlier contains a local buffer overflow vulnerability in command-line argument handling that allows local…
CVE-2018-25355 – Audiograbber 1.83 Local Buffer Overflow via SEH
CVE ID :CVE-2018-25355 Published : May 23, 2026, 6:30 p.m. | 6 hours, 29 minutes ago Description :Audiograbber 1.83 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting…
CVE-2018-25353 – Redaxo CMS Mediapool Addon 5.5.1 Arbitrary File Upload
CVE ID :CVE-2018-25353 Published : May 23, 2026, 6:30 p.m. | 6 hours, 29 minutes ago Description :Redaxo CMS Mediapool Addon 5.5.1 and older contains an arbitrary file upload vulnerability that allows authenticated users…