Vendors

microsoft
5996
oracle
5555
google
5333
ibm
5110
apple
4465
linux
4329
debian
3704
cisco
3114
redhat
2557
fedoraproject
2218
adobe
1968
canonical
1944
mozilla
1469
opensuse
1413
red hat
1218
netapp
1206
jenkins
1026
apache
1003
hp
858
sap
807
sun
735
gitlab
718
intel
712
huawei
701
mediatek
551
siemens
518
unisoc
488
drupal
485
f5
469
gnu
467
samsung
466
netgear
452
wordpress
431
fortinet
416
moodle
412
suse
405
trend micro
398
dell
395
imagemagick
376
joomla
367
wireshark
365
vmware
355
juniper
343
novell
313
mcafee
306
php
301
mediawiki
287
mariadb
284
atlassian
280
cybozu
263
qualcomm
258
symantec
256
xen
256
cpanel
255
jetbrains
247
typo3
245
qemu
240
d-link
230
mattermost
223
opera
218
nextcloud
210
freebsd
209
gpac
203
open-xchange
198
schneider-electric
197
emc
191
ffmpeg
186
zohocorp
183
nvidia
177
broadcom
173
phpmyadmin
172
lenovo
169
citrix
162
linuxfoundation
156
openstack
156
libtiff
153
openssl
151
trendmicro
146
openbsd
145
gnome
144
phpgurukul
140
arubanetworks
134
dlink
134
foxitsoftware
133
oretnom23
133
amd
124
owncloud
121
zyxel
120
liferay
118
paloaltonetworks
118
magento
117
tp-link
116
chadhaajay
114
synology
109
otrs
107
samba
106
microfocus
102
solarwinds
102
bea
100
discourse
99
cmsmadesimple
97
kde
96
asus
95
hitachi
95
parallels
94
splunk
94
exiv2
93
qnap
93
hcltech
91
isc
91
horde
90
sgi
89
artifex
88
mantisbt
88
otfcc project
87
axiosys
86
elastic
86
pimcore
82
glpi-project
81
postgresql
81
nagios
79
rubyonrails
79
mybb
77
python
77
advantech
76
mysql
76
sophos
75
concretecms
73
foxit
73
swftools
73
ethereal group
72
mahara
72
netbsd
72
pdf-xchange
72
wpdeveloper
71
cacti
70
gentoo
70
freedesktop
69
rsa
69
cesanta
68
silverstripe
68
digium
67
oscommerce
67
pidgin
66
ipswitch
65
mit
65
plone
65
puppet
65
eclipse
64
esri
64
libming
64
zte
64
tibco
63
webmin
62
dolibarr
61
libav
61
tenable
61
sonicwall
60
netscape
59
dedecms
58
f-secure
58
haxx
58
hashicorp
57
phpmyfaq
57
prestashop
57
theforeman
57
avaya
56
e107
56
phpbb group
56
progress
56
bestwebsoft
55
francisco burzi
55
jasper project
55
xpdfreader
55
ivanti
54
piwigo
54
radare
54
microweber
53
mitel
53
squirrelmail
53
macromedia
52
bentley
51
moxa
51
open-emr
51
realnetworks
51
wso2
51
mikrotik
50
nasm
50
nodejs
50
xmlsoft
50
graphicsmagick
49
eyoucms
48
octopus
48
tiki
48
tor
48
arm
47
bestpractical
47
icewarp
47
videolan
47
zammad
47
zoneminder
47
kibokolabs
46
mongodb
46
ntp
46
xerox
46
xwiki
46
hpe
45
linecorp
45
nokia
45
phpjabbers
45
pivotal software
45
ruby-lang
45
squid-cache
45
code-projects
44
mandrakesoft
44
rockwellautomation
44
roundcube
44
xoops
44
yahoo
44
amazon
43
checkpoint
43
freerdp
43
invision power services
43
kubernetes
43
x.org
43
github
42
magzter
42
misp
42
phorum
42
struktur
42
themeum
42
ca
41
chamilo
41
philips
41
sco
41
tracker-software
41
10web
40
pulsesecure
40
sandhillsdev
40
jerryscript
39
limesurvey
39
podofo project
39
zimbra
39
clamav
38
fujitsu
38
kaspersky
38
windows nt
38
acronis
37
fusionpbx
37
jelsoft
37
openexr
37
mambo
36
openatom
36
themeisle
36
websense
36
blackberry
35
codesys
35
freetype
35
intelliants
35
libarchive
35
openwrt
35
tenda
35
ubuntu
35
uclouvain
35
vim
35
get-simple
34
jsish
34
phpbb
34
zabbix
34
grafana
33
hasthemes
33
mybulletinboard
33
avast
32
igniterealtime
32
netiq
32
vtiger
32
cloudfoundry
31
djangoproject
31
ge
31
linksys
31
redmine
31
arista
30
bigbluebutton
30
craftcms
30
leap13
30
manageengine
30
opensc project
30
pluginus
30
synacor
30
webkitgtk
30
wpmet
30
zoom
30
clam anti-virus
29
glyphandcog
29
honeywell
29
libpng
29
matrix
29
metagauss
29
punbb
29
revive-adserver
29

Plethora Plugins Tabs + AccordionsPlethora Plugins Tabs + Accordions <= 1.1.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via anchor

First published (updated )

CVE-2024-13709Linear <= 2.8.1 - Cross-Site Request Forgery to Cache Reset

First published (updated )

Nuxt NuxtOpening a malicious website while running a Nuxt dev server could allow read-only access to code

EPSS
0.04%
First published (updated )

Nuxt NuxtOpening a malicious website while running a Nuxt dev server could allow read-only access to code

EPSS
0.04%
First published (updated )

Campcodes School Management SoftwareCampCodes School Management Software Notice Board Page notice-list cross site scripting

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

maven/org.hl7.fhir.publisher:org.hl7.fhir.publisher.cliInfoleak

First published (updated )

CVE-2025-0709Dcat-Admin Roles Page roles cross site scripting

First published (updated )

FUMIAO OpenCMSfumiao opencms Add Model Management Page addOrUpdate cross site scripting

First published (updated )

JoeyBling bootplusJoeyBling bootplus admin.html cross site scripting

First published (updated )

JoeyBling bootplusJoeyBling bootplus QrCodeController.java qrCode redirect

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

HL7 FHIR IG PublisherPotential GitHub repo user and credential information exposure

EPSS
0.04%
First published (updated )

JoeyBling bootplusJoeyBling bootplus QrCodeController.java qrCode resource consumption

First published (updated )

JoeyBling bootplusJoeyBling bootplus SysFileController.java path traversal

First published (updated )

JoeyBling bootplusJoeyBling bootplus SysFileController.java unrestricted upload

First published (updated )

Popup MakerWordPress Popup Maker plugin <= 1.20.2 - Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Metaphor Creations Post DuplicatorWordPress Post Duplicator plugin <= 2.35 - Broken Access Control vulnerability

EPSS
0.04%
First published (updated )

add-ons.org PDF Invoices for WooCommerce + Drag and Drop Template BuilderWordPress PDF Invoices for WooCommerce plugin <= 4.6.0 - Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

Kadence WP Gutenberg BlocksWordPress Kadence Blocks plugin <= 3.3.1 - Broken Access Control vulnerability

EPSS
0.04%
First published (updated )

GoDaddy CoBlocksWordPress CoBlocks plugin <= 3.1.13 - Broken Access Control vulnerability

EPSS
0.04%
First published (updated )

ExactMetricsWordPress ExactMetrics plugin <= 8.1.0 - Broken Access Control vulnerability

EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ElementInvader Addons for ElementorWordPress ElementInvader Addons for Elementor plugin <= 1.3.3 - Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

Aleksandar Urošević Easy YouTube GalleryWordPress Easy YouTube Gallery plugin <= 1.0.4 - Stored Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

AddonMaster Post Grid MasterWordPress Post Grid Master plugin <= 3.4.12 - Local File Inclusion vulnerability

EPSS
0.04%
First published (updated )

CVE-2025-24726WordPress Contact Form 7 Widget plugin <= 1.2.1 - Stored Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

Rextheme WP VRWordPress WP VR plugin <= 8.5.14 - Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

ThimPress Thim Elementor KitWordPress Thim Elementor Kit Plugin <= 1.2.8 - Broken Access Control vulnerability

EPSS
0.04%
First published (updated )

NowButtons.com Call Now ButtonWordPress Call Now Button plugin <= 1.4.13 - Cross Site Request Forgery (CSRF) vulnerability

EPSS
0.04%
First published (updated )

CodePeople Booking Calendar Contact FormWordPress Booking Calendar Contact Form Plugin <= 1.2.55 - Stored Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

Wpdevart Widget CountdownWordPress Widget Countdown plugin <= 2.7.1 - Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

IP2Location Country BlockerWordPress IP2Location Country Blocker plugin <= 2.38.3 - Cross Site Scripting (XSS) vulnerability

EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203