June 2, 2026CVE-2026-4071 affects the Birdseed plugin for WordPress (up to v2.2.0) with a medium severity (CVSS 4.3) CSRF vulnerability. Ensure to…
June 2, 2026CVE-2026-5191 affects the Tiled Gallery Carousel Without Jetpack plugin for WordPress, with a CVSS score of 5.4. Authenticated users can…
June 2, 2026CVE-2026-5074 affects the ARMember Premium plugin (up to 7.3.1) with a CVSS score of 6.5. This medium severity SQL injection…
June 2, 2026CVE-2026-2425 affects the Hiweb Migration Simple plugin for WordPress (up to 2.0.0.1) with a medium severity CVSS score of 6.1.…
June 2, 2026CVE-2026-4080 affects the Easy Cart plugin for WordPress (up to version 1.8) with a medium severity CVSS score of 6.4.…
June 2, 2026CVE-2026-9730 affects the Remove Nofollow Commenter Link plugin for WordPress, version 1.0, with a medium severity CVSS score of 4.3.…
June 2, 2026CVE-2026-4081 affects the ZeM STL Viewer plugin for WordPress (version 1.0 and earlier) with a CVSS score of 6.4. Authenticated…
June 2, 2026CVE-2026-1450 affects the Rognone plugin for WordPress (up to v0.6.2) with a medium severity (CVSS 6.1) reflected XSS vulnerability. Ensure…
June 2, 2026CVE-2026-8885 affects the DeMomentSomTres Shortcodes plugin (up to v1.1.1) with a medium severity CVSS score of 6.4. Authenticated attackers can…
June 2, 2026CVE-2026-9723 affects the Google Plus One Bottom plugin for WordPress (up to version 0.0.2) with a medium severity (CVSS 4.3)…
June 2, 2026CVE-2025-5085 affects the WP Nano Ad plugin (up to v1.31) with a CVSS score of 5.5. This medium-severity Stored XSS…
June 2, 2026CVE-2026-9722 affects the Laiser Tag plugin for WordPress (up to version 1.2.5) with a medium severity CVSS score of 4.3.…
May 22, 2026CVE-2026-45442 affects Presto Player plugin versions up to 4.1.3, allowing unauthorized access to private media. Upgrade to version 4.1.4 to…
May 22, 2026CVE-2026-5293 affects the Os Diagnosis Generator plugin for WordPress (up to v1.4.16) with a medium severity CVSS score of 6.4.…
May 22, 2026CVE-2026-8038 affects the Faces of Users WordPress plugin (up to version 0.0.3) with a medium severity CVSS score of 6.4…
May 22, 2026CVE-2026-6072 affects the Oliver POS plugin for WordPress (up to 2.4.2.6) with a medium severity (CVSS 6.5) authentication bypass. Unauthenticated…
May 22, 2026CVE-2026-42675 affects the Hydra Booking plugin for WordPress (up to version 1.1.41) with a CVSS score of 5.3. Ensure you…
May 22, 2026CVE-2026-45438 affects the Wt Smart Coupons For WooCommerce plugin (up to version 2.3.0) with a CVSS score of 5.3. This…
May 22, 2026CVE-2026-42679 affects the Classified Listing plugin for WordPress (up to version 5.3.8) with a medium severity (CVSS 4.3). Patch to…
May 22, 2026CVE-2026-8096 affects the Kirki plugin (up to version 6.0.6) with a medium severity score of 6.5. Authenticated users can bypass…
