CVE

Security vulnerability reports and CVE analysis for WordPress plugins, themes, and core.

39 articles

CVE 3 min read

Overview of CVE-2026-3569 A stored Cross-Site Scripting vulnerability affects Liaison Site Prober. This flaw has a CVSS score…

April 25, 2026 Read More

CVE 3 min read

Users can bypass access controls in HM Books Gallery. This missing authorization flaw affects book management features. It…

April 25, 2026 Read More

CVE 3 min read

A critical vulnerability hits Breeze Cache, a WordPress caching plugin. CVE-2026-3844 carries a CVSS score of 9.8. This…

April 25, 2026 Read More

CVE 3 min read

Overview of CVE-2026-3565 A Cross-Site Request Forgery vulnerability affects the Taqnix plugin. This flaw has a CVSS score…

April 25, 2026 Read More

CVE 3 min read

Users can access restricted documentation features in BetterDocs. This missing authorization flaw affects data privacy. It exposes sensitive…

April 25, 2026 Read More

CVE 3 min read

Authenticated users can access unauthorized features in ExactMetrics. This flaw exposes your analytics data. It may allow privilege…

April 25, 2026 Read More

CVE 3 min read

Security researchers found a stored cross-site scripting (XSS) flaw in Gutentor. This WordPress page builder plugin has over…

April 25, 2026 Read More

CVE 3 min read

Overview of CVE-2026-6810 A missing authorization vulnerability affects the Booking Calendar Contact Form plugin. This flaw has a…

April 25, 2026 Read More

CVE 3 min read

Attackers can upload malicious files through MaxiBlocks Builder. This puts your WordPress site at risk. You need to…

April 25, 2026 Read More

CVE 6 min read

# CVE-2026-5364: Critical Arbitrary File Upload in Drag and Drop File Upload for Contact Form 7 Plugin (CVSS…

April 25, 2026 Read More