WP Security

Perfmatters Directory Traversal Security Alert(CVE20264351)

Directory Traversal in WordPress Perfmatters Plugin
Hong Kong Security Alert Tutor LMS Access Flaw(CVE20263360)
  • April 12, 2026
Securing Vendor Access for Community Safety(NOCVE)
  • April 12, 2026
Hong Kong Security Advisory XSS in AddFunc(CVE20262305)
  • April 10, 2026
Hong Kong Alert XSS in Download Manager(CVE20265357)
  • April 10, 2026
Hong Kong Alert MStore API IDOR Risk(CVE20263568)
  • April 10, 2026
Protecting Users Against Download Manager Vulnerabilities(CVE20264057)
  • April 10, 2026
WWordPress Vulnerability Database

Hong Kong Security Alert Tutor LMS Access Flaw(CVE20263360)

  • April 12, 2026
Broken Access Control in WordPress Tutor LMS Plugin
Read More
WWordPress Vulnerability Database

Securing Vendor Access for Community Safety(NOCVE)

  • April 12, 2026
Vendor Portal
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory XSS in AddFunc(CVE20262305)

  • April 10, 2026
Cross Site Scripting (XSS) in WordPress AddFunc Head & Footer Code Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Alert XSS in Download Manager(CVE20265357)

  • April 10, 2026
Cross Site Scripting (XSS) in WordPress Download Manager Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Alert MStore API IDOR Risk(CVE20263568)

  • April 10, 2026
Insecure Direct Object References (IDOR) in WordPress MStore API Plugin
Read More
WWordPress Vulnerability Database

Protecting Users Against Download Manager Vulnerabilities(CVE20264057)

  • April 10, 2026
Broken Access Control in WordPress Download Manager Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Ziggeo Access Flaw(CVE20264124)

  • April 10, 2026
Broken Access Control in WordPress Ziggeo Plugin
Read More
WWordPress Vulnerability Database

Community Alert UsersWP Access Control Flaw(CVE20264977)

  • April 10, 2026
Broken Access Control in WordPress UsersWP Plugin
Read More
WWordPress Vulnerability Database

Bookly Plugin Content Injection Security Advisory(CVE20262519)

  • April 10, 2026
Content Injection in WordPress Bookly Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Sites from PrivateContent XSS(CVE20264025)

  • April 9, 2026
Cross Site Scripting (XSS) in WordPress PrivateContent Free Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout
0

Notifications

EN
ZH ZH_CN ES HI FR