May 19, 2026CVE-2026-6549 affects the Logo Manager For Enamad plugin (up to 0.7.4) with a CVSS score of 6.4. Authenticated users can…
May 19, 2026CVE-2026-8624 affects the Lj Comments Import Reloaded plugin for WordPress (up to version 0.97.1) with a medium severity CVSS score…
May 19, 2026The SponsorMe plugin for WordPress (up to version 0.5.2) has a medium severity XSS vulnerability (CVE-2026-8626) due to insufficient input…
May 19, 2026CVE-2026-6728 affects the Revslider plugin for WordPress (up to version 7.0.9) with a medium severity (CVSS 5.3) vulnerability. Unauthenticated attackers…
May 19, 2026CVE-2026-7472 affects the Expand Maker plugin (up to version 3.5.7) with a medium severity SQL injection vulnerability (CVSS 4.9). Authenticated…
May 19, 2026CVE-2026-8627 affects the Correct Prices plugin for WordPress (version 1.0) with a medium severity CVSS score of 6.1. Unauthenticated attackers…
May 18, 2026CVE-2026-42654 affects the Wallet System for WooCommerce plugin (up to version 2.7.5) with a CVSS score of 4.3. It allows…
May 18, 2026CVE-2026-42660 affects the Contest Gallery plugin for WordPress (up to version 28.1.7) with a CVSS score of 4.3. Authenticated attackers…
May 18, 2026CVE-2026-40776 affects the Wp Event Solution plugin (versions up to 4.1.8) with a CVSS score of 5.3. Unauthenticated attackers can…
May 18, 2026CVE-2026-42384 affects Simply Schedule Appointments plugin versions up to 1.6.11.1, exposing sensitive data to unauthenticated users. Update to version 1.6.11.2…
May 18, 2026CVE-2026-42655 affects the Wp Payment Form plugin (up to v4.6.19) with a CVSS score of 5.3. Unauthenticated attackers can manipulate…
May 18, 2026CVE-2026-40795 affects the Amelia Booking plugin for WordPress (up to version 2.2) with a medium severity (CVSS 4.3). Ensure you…
May 18, 2026CVE-2026-42629 affects the PowerPack Elements plugin for WordPress, allowing unauthorized access due to missing capability checks. Update to version 2.13.0…
May 18, 2026CVE-2026-42410 affects TheGem Elements Elementor plugin (up to 5.12.1.1) with a medium severity (CVSS 6.4). Authenticated attackers can exploit this…
May 18, 2026CVE-2026-42412 affects the Wp User Frontend plugin (up to version 4.3.1) with a medium severity CVSS score of 5.3. Unauthenticated…
May 18, 2026CVE-2026-42379 affects the Templately plugin for WordPress (up to version 3.6.1) with a CVSS score of 4.3. Authenticated attackers can…
May 17, 2026CVE-2024-13362 affects the Text To Audio plugin (v1.7.34) with a medium severity (CVSS 6.1) cross-site scripting vulnerability. Users should update…
May 17, 2026CVE-2024-13362 affects the Wc Hkdigital Acba Gateway plugin (v1.2.6) with a medium severity CVSS score of 6.1. Ensure you patch…
May 17, 2026CVE-2026-40796 affects the WPPizza plugin for WordPress (up to version 3.19.9) with a CVSS score of 4.3. Authenticated attackers can…
May 17, 2026CVE-2024-13362 affects Inavii Social Feed For Elementor (v2.7.0) with a medium severity CVSS of 6.1 due to reflected XSS. Upgrade…
