WP Security

Community Advisory Cross Site Scripting in LearnPress(CVE202648865)

Cross Site Scripting (XSS) in WordPress LearnPress Plugin
Public Safety Notice Gravity Forms File Deletion(CVE202648866)
  • June 1, 2026
Hong Kong Alert XSS in WP Statistics(CVE202648839)
  • June 1, 2026
Hong Kong Security Alert Deserialization in WooCommerce(CVE202511993)
  • June 1, 2026
GutenBee Upload Risk Threatening Hong Kong Sites(CVE20269227)
  • June 1, 2026
Community Alert Crawlomatic File Upload Vulnerability(CVE20269009)
  • June 1, 2026
HK Security Alert Contact Form 7 XSS(CVE20267052)
  • June 1, 2026
WWordPress Vulnerability Database

Public Safety Notice Gravity Forms File Deletion(CVE202648866)

  • June 1, 2026
Arbitrary File Deletion in WordPress Gravity Forms Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Alert XSS in WP Statistics(CVE202648839)

  • June 1, 2026
Cross Site Scripting (XSS) in WordPress WP Statistics Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Deserialization in WooCommerce(CVE202511993)

  • June 1, 2026
Deserialization of untrusted data in WordPress WooCommerce Infinite Scroll Plugin
Read More
WWordPress Vulnerability Database

GutenBee Upload Risk Threatening Hong Kong Sites(CVE20269227)

  • June 1, 2026
Arbitrary File Upload in WordPress GutenBee Plugin
Read More
WWordPress Vulnerability Database

Community Alert Crawlomatic File Upload Vulnerability(CVE20269009)

  • June 1, 2026
Arbitrary File Upload in WordPress Crawlomatic Multisite Scraper Post Generator Plugin
Read More
WWordPress Vulnerability Database

HK Security Alert Contact Form 7 XSS(CVE20267052)

  • June 1, 2026
Cross Site Scripting (XSS) in WordPress HT Contact Form 7 Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert ACF Privilege Escalation(CVE20268809)

  • June 1, 2026
Privilege Escalation in WordPress ACF Extended Plugin
Read More
WWordPress Vulnerability Database

Community Advisory on TableOn SQL Injection(CVE202642755)

  • June 1, 2026
SQL Injection in WordPress TableOn Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Alert QuickWebP File Deletion Threat(CVE202642756)

  • June 1, 2026
Arbitrary File Deletion in WordPress QuickWebP – Compress / Optimize Images & Convert WebP
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory WebinarIgnition File Deletion(CVE202642757)

  • June 1, 2026
Arbitrary File Deletion in WordPress WebinarIgnition Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout
0

Notifications

English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French