May 17, 2026CVE-2026-3140 affects the Ultimate Dashboard plugin for WordPress (up to 3.8.14) with a medium severity (CVSS 4.3) CSRF vulnerability. Upgrade…
May 17, 2026CVE-2024-13362 affects the Auto Install Free Ssl plugin (v4.5.0) with a medium severity CVSS score of 6.1 due to cross-site…
May 17, 2026CVE-2026-3004 affects the Snow Monkey Blocks plugin for WordPress, with a CVSS score of 6.4. Users should upgrade to version…
May 17, 2026CVE-2024-13362 affects the Dynamic Copyright Year plugin (v1.0.4) with a medium severity (CVSS 6.1) reflected XSS vulnerability. Ensure to update…
May 17, 2026CVE-2026-3143 affects the Boldgrid Backup plugin for WordPress (up to version 1.17.1) with a CVSS score of 5.3. Unauthenticated attackers…
May 17, 2026CVE-2026-6127 affects Elementor plugin versions up to 4.0.4, allowing authenticated users to exploit a medium severity XSS vulnerability. Users should…
May 17, 2026CVE-2026-42659 affects the Advanced Form Integration plugin for WordPress versions up to 1.126.12. This medium severity vulnerability allows authenticated users…
May 17, 2026CVE-2026-42651 affects the Classified Listing plugin for WordPress (up to version 5.3.9) with a CVSS score of 4.3. Patch to…
May 17, 2026CVE-2026-42657 affects the Contest Gallery plugin for WordPress (up to version 28.1.7) with a CVSS score of 5.3. Unauthenticated attackers…
May 17, 2026CVE-2026-42656 affects the Contest Gallery plugin (up to version 28.1.6) with a CVSS score of 6.4. Authenticated users can exploit…
May 17, 2026CVE-2026-42640 affects the Classified Listing plugin for WordPress versions up to 5.3.8, allowing unauthorized access due to missing capability checks.…
May 16, 2026CVE-2026-6237 affects the Quick Table plugin for WordPress, allowing authenticated users to exploit stored XSS due to inadequate input sanitization.…
May 16, 2026CVE-2026-6247 affects the Scratchblocks For WP plugin (up to version 1.0.1) with a CVSS score of 6.4. Authenticated users can…
May 16, 2026CVE-2026-27329 affects the YITH WooCommerce Wishlist plugin (up to v4.12.0) with a medium severity CVSS score of 5.3. Unauthenticated attackers…
May 16, 2026CVE-2026-25468 affects the Happy Elementor Addons plugin (up to version 3.20.8) with a CVSS score of 5.3. Unauthenticated attackers can…
May 16, 2026CVE-2026-40799 affects the Simple Cloudflare Turnstile plugin for WordPress (up to version 1.38.0) with a medium severity (CVSS 5.3). Unauthenticated…
May 16, 2026CVE-2025-68060 affects the Team Showcase Supreme plugin for WordPress (up to version 8.5) with a medium severity CVSS score of…
May 16, 2026CVE-2026-27421 affects the Royal Elementor Addons plugin (up to version 1.7.1053) with a medium severity (CVSS 6.4) Stored XSS vulnerability.…
May 16, 2026CVE-2026-25436 affects the Royal Elementor Addons plugin (up to version 1.7.1053) with a CVSS score of 5.3. It allows unauthorized…
May 16, 2026CVE-2026-42664 affects the Motive Commerce Search plugin for WordPress (up to version 1.38.2), allowing remote code execution due to a…
