Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (2672 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2024-49699 1 Wordpress 1 Wordpress 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in reputeinfosystems ARPrice arprice allows Object Injection.This issue affects ARPrice: from n/a through <= 4.1.3.
CVE-2024-49688 1 Wordpress 1 Wordpress 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in reputeinfosystems ARPrice arprice allows Object Injection.This issue affects ARPrice: from n/a through <= 4.1.3.
CVE-2024-49684 1 Revmakx 1 Backup And Staging By Wp Time Capsule 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in revmakx Backup and Staging by WP Time Capsule wp-time-capsule allows Object Injection.This issue affects Backup and Staging by WP Time Capsule: from n/a through <= 1.22.21.
CVE-2024-49626 1 Piyushmca 1 Shipyaari Shipping Management 2026-04-01 9.8 Critical
Deserialization of Untrusted Data vulnerability in Piyush Patel Shipyaari Shipping Management shipyaari-shipping-managment allows Object Injection.This issue affects Shipyaari Shipping Management: from n/a through <= 1.2.
CVE-2024-49625 2 Brandon Clark, Brandonclark 2 Site Builder Dynamic Components, Sitebuilder Dynamic Components 2026-04-01 9.8 Critical
Deserialization of Untrusted Data vulnerability in sphoid SiteBuilder Dynamic Components sitebuilder-dynamic-components allows Object Injection.This issue affects SiteBuilder Dynamic Components: from n/a through <= 1.0.
CVE-2024-49624 1 Smartdevth 1 Advanced Advertising System 2026-04-01 9.8 Critical
Deserialization of Untrusted Data vulnerability in smartdevth Advanced Advertising System advanced-advertising-system allows Object Injection.This issue affects Advanced Advertising System: from n/a through <= 1.3.1.
CVE-2024-49332 2 Giveaway Boost, Giveawayboost 2 Giveaway Boost, Giveaway Boost 2026-04-01 9.8 Critical
Deserialization of Untrusted Data vulnerability in giveawayboost Giveaway Boost giveaway-boost allows Object Injection.This issue affects Giveaway Boost: from n/a through <= 2.1.4.
CVE-2024-49318 1 Olsonsp4c 1 My Reading Library 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in Scott My Reading Library my-reading-library allows Object Injection.This issue affects My Reading Library: from n/a through <= 1.0.
CVE-2024-49227 1 Innovawebspzoo 1 Free Stock Photos Foter 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in foter Free Stock Photos Foter free-stock-photos-foter allows Object Injection.This issue affects Free Stock Photos Foter: from n/a through <= 1.5.4.
CVE-2024-49226 1 Taketin 1 Taketin To Wp Membership 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in taketin TAKETIN To WP Membership taketin-to-wp-membership allows Object Injection.This issue affects TAKETIN To WP Membership: from n/a through <= 2.8.17.
CVE-2024-49222 1 Wordpress 1 Wordpress 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in AmentoTech Private Limited WPGuppy wpguppy-lite allows Object Injection.This issue affects WPGuppy: from n/a through <= 1.1.0.
CVE-2024-49218 1 Recently Project 1 Recently 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in Al Imran Akash Recently recently-viewed-most-viewed-and-sold-products-for-woocommerce allows Object Injection.This issue affects Recently: from n/a through <= 1.1.
CVE-2024-48033 1 Talkback 1 Talkback 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in baptiste.gourdin Talkback talkback-secure-linkback-protocol allows Object Injection.This issue affects Talkback: from n/a through <= 1.0.
CVE-2024-48030 1 Gabriele Valenti 1 Telecash Ricaricaweb 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in Webextends Telecash Ricaricaweb telecash-ricaricaweb allows Object Injection.This issue affects Telecash Ricaricaweb: from n/a through <= 2.2.
CVE-2024-48028 1 Boyan Raichev 1 Ip Loc8 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in Boyan Raichev IP Loc8 ip-loc8 allows Object Injection.This issue affects IP Loc8: from n/a through <= 1.1.
CVE-2024-48026 1 Grayson Robbins 1 Disc Golf Manager 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in GMRobbins Disc Golf Manager disc-golf-manager allows Object Injection.This issue affects Disc Golf Manager: from n/a through <= 1.0.0.
CVE-2024-47636 1 Eyecix 1 Jobsearch Wp Job Board 2026-04-01 9.8 Critical
Deserialization of Untrusted Data vulnerability in eyecix JobSearch wp-jobsearch allows Object Injection.This issue affects JobSearch: from n/a through <= 2.5.9.
CVE-2024-43354 1 Mycred 1 Mycred 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in Saad Iqbal myCred mycred.This issue affects myCred: from n/a through <= 2.7.2.
CVE-2024-43252 1 Crewhrm 1 Crewhrm 2026-04-01 N/A
Deserialization of Untrusted Data vulnerability in Crew HRM Crew HRM hr-management.This issue affects Crew HRM: from n/a through <= 1.1.1.
CVE-2024-43242 2 Azzaroco, Wpindeed 2 Ultimate Membership Pro, Ultimate Membership Pro 2026-04-01 10.0 Critical
Deserialization of Untrusted Data vulnerability in azzaroco Ultimate Membership Pro indeed-membership-pro.This issue affects Ultimate Membership Pro: from n/a through <= 12.7.