May 20, 2026CVE-2026-8423 affects the JaviBola Custom Theme plugin for WordPress (up to v2.0.5) with a medium severity (CVSS 4.3) CSRF vulnerability.…
May 20, 2026CVE-2026-4811 affects the WPB Floating Menu or Categories plugin (up to v1.0.8) with a medium severity (CVSS 4.9) XSS vulnerability.…
May 20, 2026CVE-2026-8685 affects the Infility Global plugin for WordPress (up to v2.15.16) with a medium severity (CVSS 6.5) SQL injection vulnerability.…
May 20, 2026CVE-2026-8418 affects the Game Catalog plugin for WordPress (up to v1.2.0) with a medium severity (CVSS 4.3) CSRF vulnerability. Unauthenticated…
May 20, 2026CVE-2026-8419 affects the Amazon Scraper plugin for WordPress, version 1.1 and earlier. This medium severity CSRF vulnerability allows attackers to…
May 20, 2026CVE-2026-7462 affects the VatanSMS WP SMS plugin (up to version 1.01) with a CVSS score of 6.1. This medium severity…
May 20, 2026CVE-2026-6400 affects the Child Height Predictor plugin for WordPress (up to version 1.3) with a CVSS score of 4.3. Ensure…
May 20, 2026CVE-2026-6401 affects the Bottom Bar plugin for WordPress (up to version 0.1.7) with a CVSS score of 4.3. This medium-severity…
May 20, 2026CVE-2026-8420 affects the Blogchat Chat System plugin for WordPress (up to v1.3.6.3) with a medium severity CVSS score of 6.1.…
May 20, 2026CVE-2026-6452 affects the Bigfishgames Syndicate plugin (up to version 1.2) with a medium severity CVSS score of 4.3. Proper nonce…
May 20, 2026CVE-2026-6397 affects the Sticky plugin for WordPress (up to version 2.5.6) with a CVSS score of 6.4. Authenticated attackers can…
May 20, 2026CVE-2026-6395 affects the Word 2 Cash plugin (up to version 0.9.2) with a medium severity (CVSS 6.1) vulnerability. Unauthenticated attackers…
May 20, 2026CVE-2026-6399 affects the General Options plugin for WordPress (up to 1.1.0) with a CVSS score of 4.4. Authenticated admins can…
May 20, 2026CVE-2026-6404 affects the Anomify plugin (up to version 0.3.6) with a medium severity score of 4.4. Authenticated admins can exploit…
May 19, 2026CVE-2025-15369 affects the Xpro Elementor Addons plugin (v1.5.0) with a medium severity (CVSS 5.3). Unauthenticated attackers can create published templates.…
May 19, 2026CVE-2026-2955 affects the Ai Copilot Content Generator plugin for WordPress (up to v1.4.14) with a medium severity CVSS of 6.4.…
May 19, 2026CVE-2026-5075 affects All in One SEO Pack versions up to 4.9.7, allowing authenticated users to access sensitive data like API…
May 19, 2026CVE-2026-6566 affects the NextGEN Gallery plugin for WordPress (up to 4.2.0) with a medium severity CVSS score of 4.3. Authenticated…
May 19, 2026CVE-2026-6405 affects the Anomify plugin for WordPress (up to 0.3.6) with a medium severity (CVSS 4.3) XSS vulnerability. Ensure to…
May 19, 2026CVE-2026-8610 affects the Ts Webfonts For Conoha plugin for WordPress versions up to 2.0.4, allowing authenticated users to modify settings…
