AI-Powered CVE Analysis for WordPress Plugins
We use AI to automate the differential analysis between vulnerable and patched plugin versions to understand and interpret the security issues. What we share here is research-grade proof of concept demonstrations that are then fed back into our endpoint firewall service.
WordPress Proof of Concepts
AI-assisted vulnerability analysis with PoC demonstration
2026-02-18
CVE-2026-2504: Dealia – Request a quote <= 1.0.7 – Missing Authorization to Authenticated (Contributor+) Plugin Configuration Reset (dealia-request-a-quote)
The Dealia – Request a quote plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on multiple AJAX handlers in all versions up to, and including, 1.0.7. The admin nonce (DEALIA_ADMIN_NONCE) is exposed to all users with edit_posts capability (Contributor+) via wp_localize_script() in PostsController.php, while the AJAX handlers in…
2026-02-18
CVE-2026-1405: Slider Future <= 1.0.5 – Unauthenticated Arbitrary File Upload (slider-future)
The Slider Future plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'slider_future_handle_image_upload' function in all versions up to, and including, 1.0.5. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible.
2026-02-18
CVE-2026-2284: News Element Elementor Blog Magazine <= 1.0.8 – Missing Authorization to Authenticated (Subscriber+) Data Loss (news-element)
The News Element Elementor Blog Magazine plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.8. This is due to a missing capability check and nonce verification on the 'ne_clean_data' AJAX action. This makes it possible for authenticated attackers, with Subscriber-level access and above, to truncate 8 core WordPress…
2026-02-18
CVE-2026-1373: Easy Author Image <= 1.7 – Authenticated (Subscriber+) Stored Cross-Site Scripting via Profile Picture URL (easy-author-image)
The Easy Author Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'author_profile_picture_url' parameter in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subscriber-level access and above, to inject arbitrary web scripts in pages that will execute…
2026-02-18
CVE-2026-1055: TalkJS <= 0.1.15 – Authenticated (Administrator+) Stored Cross-Site Scripting via 'welcomeMessage' Parameter (talkjs)
The TalkJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 0.1.15 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user…
2026-02-18
CVE-2026-1646: Advance Block Extend <= 1.0.4 – Authenticated (Contributor+) Stored Cross-Site Scripting via TitleColor Block Attribute (advance-block-extend)
The Advance Block Extend plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TitleColor block attribute in the Latest Posts Gutenberg block in all versions up to, and including, 1.0.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary…
2026-02-18
CVE-2025-14076: iXML – Google XML sitemap generator <= 0.6 – Reflected Cross-Site Scripting via 'iXML_email' Parameter (ixml)
The iXML – Google XML sitemap generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'iXML_email' parameter in all versions up to, and including, 0.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can…
2026-02-18
CVE-2026-1047: salavat counter Plugin <= 0.9.5 – Authenticated (Administrator+) Stored Cross-Site Scripting via 'image_url' Parameter (salavat-counter)
The salavat counter Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'image_url' parameter in all versions up to, and including, 0.9.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access and above, to inject arbitrary web scripts in pages that will execute…
2026-02-18
CVE-2026-1044: Tennis Court Bookings <= 1.2.7 – Authenticated (Administrator+) Stored Cross-Site Scripting via Admin Settings and Calendar Parameters (tennis-court-bookings)
The Tennis Court Bookings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.2.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever…
2026-02-18
CVE-2026-0561: Shield Security <= 21.0.8 – Unauthenticated Reflected Cross-Site Scripting via 'message' Parameter (wp-simple-firewall)
The Shield Security plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'message' parameter in all versions up to, and including, 21.0.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user…
How Atomic Edge Works
Simple Setup. Powerful Security.
Atomic Edge acts as a security layer between your website & the internet — inspecting, filtering, and blocking malicious traffic before it ever reaches
your application.