NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-39660	Missing Authorization vulnerability in Automattic WP Job Manager wp-job-manager allows Exploiting Incorrectly Configured Access Control Security Level...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39659	Missing Authorization vulnerability in Ultimate Member Ultimate Member ultimate-member allows Exploiting Incorrectly Configured Access Control Securit...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39658	Missing Authorization vulnerability in Coding Panda Panda Pods Repeater Field panda-pods-repeater-field allows Exploiting Incorrectly Configured Acces...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39657	Missing Authorization vulnerability in leadlovers leadlovers forms leadlovers-forms allows Exploiting Incorrectly Configured Access Control Security L...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39656	Missing Authorization vulnerability in Razorpay Razorpay for WooCommerce woo-razorpay allows Exploiting Incorrectly Configured Access Control Security...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39654	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ashish Ajani WP Simple HTML Sitemap wp-simple-ht...	2026-04-08	N/A	None	None	NVD
CVE-2026-39653	Missing Authorization vulnerability in Deepen Bajracharya Video Conferencing with Zoom video-conferencing-with-zoom-api allows Exploiting Incorrectly ...	2026-04-08	4.3	NETWORK	MEDIUM	NVD
CVE-2026-39652	Missing Authorization vulnerability in igms iGMS Direct Booking igms-direct-booking allows Exploiting Incorrectly Configured Access Control Security L...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39651	Missing Authorization vulnerability in TotalSuite Total Poll Lite totalpoll-lite allows Exploiting Incorrectly Configured Access Control Security Leve...	2026-04-08	6.3	NETWORK	MEDIUM	NVD
CVE-2026-39650	Missing Authorization vulnerability in Unitech Web UnitechPay unitechpay-paiements-mobile-money allows Exploiting Incorrectly Configured Access Contro...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39649	Missing Authorization vulnerability in themebeez Royale News royale-news allows Exploiting Incorrectly Configured Access Control Security Levels.This ...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39648	Missing Authorization vulnerability in themebeez Cream Blog cream-blog allows Exploiting Incorrectly Configured Access Control Security Levels.This is...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39647	Server-Side Request Forgery (SSRF) vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Ser...	2026-04-08	5.4	NETWORK	MEDIUM	NVD
CVE-2026-39646	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bozdoz Leaflet Map leaflet-map allows Stored XSS...	2026-04-08	6.5	NETWORK	MEDIUM	NVD
CVE-2026-39645	Server-Side Request Forgery (SSRF) vulnerability in Global Payments GlobalPayments WooCommerce global-payments-woocommerce allows Server Side Request ...	2026-04-08	5.4	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.