June 12, 2026CVE-2026-8900 affects the Simple SEO Slideshow plugin for WordPress (up to v1.2.8) with a medium severity CVSS score of 6.4.…
June 12, 2026CVE-2026-10038 affects the Charitable plugin (up to 1.8.11.1) with a medium severity score of 4.3. Authenticated users can exploit this…
June 12, 2026CVE-2026-7047 affects the Frontend User Notes plugin for WordPress (up to v2.1.1) with a medium severity CVSS score of 4.3.…
June 11, 2026CVE-2026-9197 affects Smart Slider 3 (up to 3.5.1.36) with a CVSS score of 4.9. Authenticated admins can exploit a file…
June 11, 2026CVE-2026-7665 affects the Essential Addons For Elementor Lite plugin (up to version 6.6.4) with a CVSS score of 5.3. Unauthenticated…
June 11, 2026CVE-2026-2500 affects the Quick Playground plugin (up to version 1.3.4) with a medium severity (CVSS 4.4) file upload vulnerability. Update…
June 11, 2026CVE-2026-9125 affects Presto Player plugin versions up to 4.2.0, allowing authenticated attackers to inject JavaScript due to insufficient input sanitization.…
June 11, 2026CVE-2026-7624 affects Squirrly SEO plugin versions up to 12.4.16, allowing authenticated attackers to bypass authorization. Upgrade to 12.4.17 to mitigate…
June 11, 2026CVE-2026-8839 affects the MapPress Google Maps for WordPress plugin up to version 2.96.6, allowing unauthenticated access to sensitive map data.…
June 11, 2026CVE-2026-8991 affects the Drag And Drop Multiple File Upload Contact Form 7 plugin (up to 1.3.9.7) with a medium severity…
June 11, 2026CVE-2026-7792 affects WPForms Lite versions up to 1.10.0.4, allowing unauthenticated remote code execution due to insufficient data verification. Upgrade to…
June 11, 2026CVE-2026-7796 affects the Embedpress plugin for WordPress (up to v4.5.3) with a medium severity CVSS score of 6.4. Authenticated attackers…
June 11, 2026CVE-2026-8611 affects the Klamra Paycal for Aspaclaria plugin (v1.1.4 and below) with a medium severity (CVSS 4.3). Authenticated users can…
June 11, 2026CVE-2026-8502 affects the LearnPress plugin (up to version 4.3.6) with a CVSS score of 5.3. Unauthenticated attackers can access sensitive…
June 11, 2026CVE-2026-7565 affects the LearnPress Import Export plugin (up to v4.1.4) with a medium severity (CVSS 4.9) file upload vulnerability. Update…
June 11, 2026CVE-2026-7795 affects the Click To Chat For Whatsapp plugin (up to v4.38) with a CVSS score of 6.4. Authenticated attackers…
June 11, 2026CVE-2026-9280 affects the Ad Inserter plugin for WordPress (up to version 2.8.15) with a CVSS score of 6.1. Users should…
June 11, 2026CVE-2026-8978 affects the OptinCraft plugin for WordPress (up to 1.2.0) with a medium severity SQL injection vulnerability. Admins should upgrade…
June 11, 2026CVE-2026-7566 affects the LearnPress Import Export plugin (up to v4.1.4) with a medium severity (CVSS 6.6) file upload vulnerability. Update…
June 11, 2026CVE-2026-9281 affects Master Addons for Elementor (up to v3.1.0) with a medium severity (CVSS 6.4) Stored XSS vulnerability. Update to…
