May 22, 2026CVE-2026-42676 affects the myCred plugin for WordPress (up to version 3.0.4) with a medium severity CVSS score of 6.4. Users…
May 22, 2026CVE-2026-42677 affects the WP Document Revisions plugin (up to version 3.8.1) with a medium severity CVSS score of 5.3. Unauthenticated…
May 22, 2026CVE-2026-42674 affects the Advanced Access Manager plugin (up to v7.1.0) with a CVSS score of 5.3. Unauthenticated attackers can exploit…
May 21, 2026CVE-2026-8684 affects the Motopress Hotel Booking Lite plugin (up to version 6.0.1) with a CVSS score of 5.3. Unauthenticated users…
May 21, 2026CVE-2026-8692 affects Vedrixa Forms Registration Builder plugin versions up to 1.1.1, allowing authenticated users to modify forms. Update to version…
May 21, 2026CVE-2026-7615 affects the Widget Context plugin for WordPress (up to v1.3.3) with a medium severity (CVSS 4.3) CSRF vulnerability. Update…
May 21, 2026CVE-2026-4070 affects the Alfie The Productfeedtool WP Plugin (up to version 1.2.1) with a medium severity CVSS score of 4.3.…
May 21, 2026CVE-2026-3481 affects the WP Blockade plugin (up to v0.9.14) with a CVSS score of 6.1. This medium severity XSS vulnerability…
May 21, 2026CVE-2026-7636 affects the Soliloquy Lite plugin (up to v2.8.1) with a CVSS score of 4.3. Authenticated users can access sensitive…
May 21, 2026CVE-2026-7249 affects the Location Weather plugin for WordPress (versions
May 21, 2026CVE-2026-7509 affects the KIA Subtitle plugin (up to 4.0.1) with a medium severity (CVSS 6.4) Stored XSS vulnerability. Users should…
May 21, 2026CVE-2026-7798 affects the Fluent Crm plugin (up to version 2.9.87) with a medium severity (CVSS 5.4) Blind SSRF vulnerability. Update…
May 21, 2026CVE-2026-9104 affects the Simple Draft List plugin for WordPress (up to version 2.6.3) with a medium severity (CVSS 6.4) stored…
May 21, 2026CVE-2026-4843 affects the GSheet For Woo Importer plugin for WordPress (up to v2.3.1) with a CVSS score of 4.3. Patch…
May 21, 2026CVE-2026-6864 affects the CBX 5 Star Rating & Review plugin for WordPress (up to v1.0.7) with a medium severity (CVSS…
May 21, 2026CVE-2026-6391 affects the Sentence To SEO plugin for WordPress (version 1.0 and earlier) with a CVSS score of 6.1. Ensure…
May 21, 2026CVE-2026-6394 affects the Nexa Blocks plugin for WordPress (up to v1.1.1), allowing unauthenticated SSRF attacks. Users should patch to mitigate…
May 20, 2026CVE-2026-1881 affects the Broadstreet plugin for WordPress (up to version 1.52.2) with a medium severity CVSS score of 4.3. Authenticated…
May 20, 2026CVE-2026-1543 affects the Fusion Builder plugin for WordPress (up to v3.15.2) with a CVSS score of 6.4. Authenticated users can…
May 20, 2026CVE-2026-8418 affects the Game Catalog plugin for WordPress (up to v1.2.0) with a medium severity (CVSS 4.3) CSRF vulnerability. Unauthenticated…
