Jetengine
This hub aggregates every CVE we track for Jetengine, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.
28
CVEs tracked
7
Critical
13
High
0
In CISA KEV
Severity distribution
HIGH13MEDIUM8CRITICAL7
Monthly trend
0
0
0
0
0
0
2
0
0
1
0
0
0
4
0
1
0
0
2
1
3
1
1
9
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Jetengine.
- CVE-2026-54189WordPress JetEngine plugin <= 3.8.10 - Cross Site Scripting (XSS) vulnerability7.1
- CVE-2026-54188WordPress JetEngine plugin <= 3.8.10 - Cross Site Scripting (XSS) vulnerability7.1
- CVE-2026-54187WordPress JetEngine plugin <= 3.8.10.1 - SQL Injection vulnerability9.3
- CVE-2026-52706WordPress JetEngine plugin <= 3.8.10 - PHP Object Injection vulnerability9.8
- CVE-2026-49084WordPress JetEngine plugin < 3.8.9.1 - SQL Injection vulnerability9.3
- CVE-2026-49076WordPress JetEngine plugin <= 3.8.9.1 - SQL Injection vulnerability9.3
- CVE-2026-49075WordPress JetEngine plugin <= 3.8.9.1 - PHP Object Injection vulnerability9.8
- CVE-2026-49074WordPress JetEngine plugin <= 3.8.9.1 - Cross Site Scripting (XSS) vulnerability7.1
- CVE-2026-12360JetEngine <= 3.8.10.1 - Unauthenticated SQL Injection via Listing Grid Load More AJAX Endpoint7.5
- CVE-2026-42774WordPress JetEngine plugin <= 3.8.8.1 - SQL Injection vulnerability9.3
- CVE-2026-4352JetEngine <= 3.8.6.1 - Unauthenticated SQL Injection via '_cct_search' Parameter7.5
- CVE-2026-4662JetEngine <= 3.8.6.1 - Unauthenticated SQL Injection via Listing Grid 'filtered_query' Parameter7.5
- CVE-2026-32355WordPress JetEngine plugin < 3.8.4.1 - Deserialization of untrusted data vulnerability8.8
- CVE-2026-28134WordPress JetEngine plugin <= 3.7.2 - Remote Code Execution (RCE) vulnerability8.5
- CVE-2025-68495WordPress JetEngine plugin <= 3.8.0 - Reflected Cross Site Scripting (XSS) vulnerability7.1
Product normalization is registry-driven with AI assist and human review. How it works