Evan Nr

#7811of 53,633
35.1Total CVSS
Vulnerabilities · 5
Medium
2
High
3
PT-2026-49227
6.5
2026-06-15
Really Simple Plugins · Really Simple Ssl · CVE-2026-48969
**Name of the Vulnerable Software and Affected Versions** Really Simple SSL versions prior to 9.6.0 **Description** Broken Access Control allows users with the Subscriber role to perform unauthorized actions. **Recommendations** Update to a version newer than 9.5.9.
PT-2026-45733
7.5
2026-06-02
Eventprime · Eventprime · CVE-2026-42669
Missing Authorization vulnerability in EventPrime allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects EventPrime: from n/a through 4.3.2.0.
PT-2026-45734
7.5
2026-06-02
Etoile Web Design Incorporated · Five Star Restaurant Reservations · CVE-2026-42670
**Name of the Vulnerable Software and Affected Versions** Five Star Restaurant Reservations versions prior to 2.7.15 **Description** Missing authorization in Etoile Web Design Incorporated Five Star Restaurant Reservations allows for the exploitation of incorrectly configured access control security levels. **Recommendations** Update to a version newer than 2.7.14.
PT-2026-45436
7.1
2026-06-01
WordPress · Vikbooking Hotel Booking Engine & Pms · CVE-2026-42683
**Name of the Vulnerable Software and Affected Versions** e4jvikwp VikBooking Hotel Booking Engine & PMS versions prior to 1.8.9 **Description** Improper neutralization of input during web page generation allows DOM-Based Cross-Site Scripting (XSS), a flaw where the application contains client-side scripts that execute malicious code in the user's browser due to unsafe handling of data. **Recommendations** Update to a version later than 1.8.8.
PT-2026-45458
6.5
2026-06-01
Paolo · Geodirectory · CVE-2026-42671
Missing Authorization vulnerability in Paolo GeoDirectory allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects GeoDirectory: from n/a through 2.8.157.