May 13, 2026CVE-2026-6174 affects the CC Child Pages plugin for WordPress (up to v2.1.1) with a medium severity (CVSS 6.4) due to…
May 13, 2026CVE-2026-6417 affects the GLS Shipping for WooCommerce plugin (up to v1.4.0) with a CVSS score of 6.1. Unauthenticated attackers can…
May 13, 2026CVE-2025-15345 affects the Interactive Geo Maps plugin for WordPress (up to version 1.6.27) with a medium severity CVSS of 6.1.…
May 12, 2026CVE-2026-6965 affects the Tutor LMS plugin (up to 3.9.9) with a CVSS score of 5.3. Authenticated users can exploit this…
May 12, 2026CVE-2026-4782 affects the Fusion Builder plugin (up to version 3.15.2) with a CVSS score of 6.5. Authenticated attackers can read…
May 12, 2026CVE-2025-14033 affects the Wc Support System plugin (up to 1.3.0) with a CVSS score of 5.3. It allows unauthorized access…
May 12, 2026CVE-2026-7051 affects the Blog2Social plugin for WordPress versions up to 8.9.0, with a CVSS score of 5.4. Authenticated attackers can…
May 12, 2026CVE-2026-6962 affects the Cost Of Goods For WooCommerce plugin (up to v4.1.0) with a medium severity CVSS of 6.4. It…
May 12, 2026CVE-2025-14755 affects the Cost Calculator Builder plugin for WordPress (up to 4.0.1), allowing unauthenticated price manipulation. Upgrade to 4.0.2 to…
May 12, 2026CVE-2025-9987 affects the Broadstreet plugin for WordPress versions up to 1.53.1, exposing sensitive data to authenticated attackers. Upgrade to version…
May 12, 2026CVE-2025-9989 affects the Broadstreet plugin for WordPress (up to 1.53.1) with a medium severity CVSS score of 4.4. Update to…
May 12, 2026CVE-2025-9988 affects the Broadstreet WordPress plugin (up to v1.53.1) with a CVSS score of 4.3. Authenticated attackers can create advertisers…
May 12, 2026CVE-2026-6828 affects the Fluent Forms plugin for WordPress (up to 6.2.1) with a CVSS score of 6.4. Authenticated attackers can…
May 12, 2026CVE-2025-15463 affects the ACF Extended plugin for WordPress, allowing unauthenticated remote code execution in versions up to 0.9.2.3. Upgrade to…
May 12, 2026CVE-2026-7619 affects the Charitable plugin for WordPress, versions up to 1.8.10.4, with a medium severity (CVSS 6.5). Patch to 1.8.10.5…
May 12, 2026CVE-2026-4607 affects the ProfileGrid User Profiles plugin (up to 5.9.8.4) with a CVSS score of 4.3. Authenticated attackers can bypass…
May 12, 2026CVE-2026-3426 affects Rometheme For Elementor plugin versions up to 2.0.2, allowing authenticated attackers to modify site-wide widget settings. Upgrade to…
May 12, 2026CVE-2026-4608 affects the ProfileGrid User Profiles plugin (up to version 5.9.8.4) with a medium severity CVSS score of 6.5. Patch…
May 11, 2026CVE-2026-6813 affects the Continually plugin for WordPress (up to version 4.3.1) with a medium severity CVSS score of 4.4. Authenticated…
May 11, 2026CVE-2026-1934 affects the Motors Car Dealership Classified Listings plugin, allowing authenticated users to bypass payment verification. Update to version 1.4.104…
