June 14, 2026CVE-2026-49769 affects the wpForo plugin for WordPress (up to version 3.1.0) with a CVSS score of 8.1. This high-severity file…
June 14, 2026CVE-2026-49768 affects the Happyforms plugin (up to version 1.26.13) with a CVSS score of 8.1. This high-severity PHP Object Injection…
June 14, 2026CVE-2026-10586 affects the Essential Blocks plugin for WordPress (up to version 6.1.3) with a CVSS score of 7.2. Authenticated attackers…
June 14, 2026CVE-2026-49778 affects WPFunnels Pro plugin versions up to 2.9.4 with a CVSS score of 7.2. This high-severity stored XSS vulnerability…
June 14, 2026CVE-2026-49763 affects the Cf7 Hubspot plugin (up to v1.3.7) with a CVSS score of 8.1. This high-severity file upload vulnerability…
June 14, 2026CVE-2026-49774 exposes the RD Station plugin for WordPress (up to 5.6.0) to high-severity remote code execution, with a CVSS score…
June 14, 2026CVE-2026-49770 affects the WP Travel Engine plugin (up to version 6.7.12) with a high severity (CVSS 8.1) file upload vulnerability.…
June 14, 2026CVE-2026-49106 affects the Cf7 Constant Contact plugin (up to v1.1.6) with a high severity CVSS score of 8.1. Unauthenticated PHP…
June 14, 2026CVE-2026-49781 affects the Suretriggers plugin for WordPress (up to version 1.1.27) with a high severity (CVSS 8.1) file upload vulnerability.…
June 14, 2026CVE-2026-49113 affects the Cornerstone plugin for WordPress (up to version 7.8.8) with a CVSS score of 8.8. Authenticated attackers can…
June 14, 2026CVE-2026-49765 affects the Cf7 Mailchimp plugin (up to v1.1.8) with a high severity CVSS score of 8.1. Unauthenticated attackers can…
June 14, 2026CVE-2026-49109 affects the Cf7 Salesforce plugin (up to version 1.4.3) with a high severity CVSS score of 8.1. Unauthenticated PHP…
June 14, 2026CVE-2026-49776 affects the GPTranslate plugin for WordPress (versions up to 2.32.6) with a high severity score of 7.5. Unauthenticated SQL…
June 13, 2026CVE-2026-7654 affects the Codepress Admin Columns plugin (up to version 7.0.18) with a CVSS score of 8.8. This high-severity vulnerability…
June 13, 2026CVE-2026-5411 affects the Advanced Google Recaptcha plugin (up to version 5.38) with a CVSS score of 8.8. Authenticated users can…
June 13, 2026CVE-2026-49766 affects WP User Manager plugin versions up to 2.9.16, allowing authenticated users to delete arbitrary files, potentially leading to…
June 13, 2026CVE-2026-49079 reveals a high severity SQL injection vulnerability (CVSS 7.5) in the Jet Search plugin for WordPress, affecting versions up…
June 13, 2026CVE-2026-49083 affects the LatePoint plugin for WordPress (up to 5.5.1) with a CVSS score of 8.8. Authenticated attackers can escalate…
June 13, 2026CVE-2026-9290 affects the WP User Manager plugin (up to 2.9.17) with a CVSS score of 7.5. This high-severity vulnerability allows…
June 13, 2026CVE-2026-9691 affects the Cf7 Active Campaign plugin for WordPress (versions up to 1.1.1) with a high severity CVSS score of…
