category_cve - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.3	CVE-2026-49084	WordPress JetEngine plugin < 3.8.9.1 - SQL Injection vulnerability_CVE-2026-49084 Unauthenticated SQL Injection in JetEngine < 3.8.9.1 versions.	Jetimpex Inc.	JetEngine n/a	Jun 17, 2026	CVE
HIGH 8.2	CVE-2026-49081	WordPress User Registration Stripe plugin <= 1.3.12 - Broken Access Control vulnerability_CVE-2026-49081 Unauthenticated Broken Access Control in User Registration Stripe	ThemeGrill	User Registration Stripe n/a	Jun 17, 2026	CVE
CRITICAL 9.3	CVE-2026-49079	WordPress JetSearch plugin <= 3.5.17 - SQL Injection vulnerability_CVE-2026-49079 Unauthenticated SQL Injection in JetSearch	Jetimpex Inc.	JetSearch n/a	Jun 17, 2026	CVE
CRITICAL 9.3	CVE-2026-49076	WordPress JetEngine plugin <= 3.8.9.1 - SQL Injection vulnerability_CVE-2026-49076 Unauthenticated SQL Injection in JetEngine	Jetimpex Inc.	JetEngine n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2026-49075	WordPress JetEngine plugin <= 3.8.9.1 - PHP Object Injection vulnerability_CVE-2026-49075 Contributor PHP Object Injection in JetEngine	Jetimpex Inc.	JetEngine n/a	Jun 17, 2026	CVE
HIGH 7.1	CVE-2026-49074	WordPress JetEngine plugin <= 3.8.9.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-49074 Unauthenticated Cross Site Scripting (XSS) in JetEngine	Jetimpex Inc.	JetEngine n/a	Jun 17, 2026	CVE
MEDIUM 6.5	CVE-2026-49072	WordPress WooCommerce Anti-Fraud plugin <= 7.2.6 - Broken Access Control vulnerability_CVE-2026-49072 Unauthenticated Broken Access Control in WooCommerce Anti-Fraud	OPMC	WooCommerce Anti-Fraud n/a	Jun 17, 2026	CVE
MEDIUM 6.5	CVE-2026-49071	WordPress WooCommerce Dropshipping plugin <= 5.2.4 - Broken Authentication vulnerability_CVE-2026-49071 Unauthenticated Broken Authentication in WooCommerce Dropshipping	OPMC	WooCommerce Dropshipping n/a	Jun 17, 2026	CVE
CRITICAL 9.8	CVE-2026-49058	WordPress LoginPress Pro plugin <= 6.2.2 - Privilege Escalation vulnerability_CVE-2026-49058 Unauthenticated Privilege Escalation in LoginPress Pro	LoginPress	LoginPress Pro n/a	Jun 17, 2026	CVE
HIGH 8.5	CVE-2026-48967	WordPress Geo Mashup plugin <= 1.13.19 - SQL Injection vulnerability_CVE-2026-48967 Subscriber SQL Injection in Geo Mashup	Dylan Kuhn	Geo Mashup n/a	Jun 17, 2026	CVE