WP Security

Community Alert XSS in Ultimate Member(CVE20261404)

Cross Site Scripting (XSS) in WordPress Ultimate Member Plugin
Hong Kong Community Alert wpForo SQL Risk(CVE20261581)
  • February 20, 2026
Hong Kong Warning XSS in Master Addons(CVE20262486)
  • February 20, 2026
Protecting Users from Orderable Plugin Access Flaws(CVE20260974)
  • February 19, 2026
Protect Against Prodigy Commerce Local File Inclusion(CVE20260926)
  • February 19, 2026
Community Alert Arbitrary Deletion in WooCommerce(CVE202513930)
  • February 19, 2026
Safeguard Hong Kong Libraries Against SQL Injection(CVE202512707)
  • February 19, 2026
WWordPress Vulnerability Database

Hong Kong Community Alert wpForo SQL Risk(CVE20261581)

  • February 20, 2026
SQL Injection in WordPress wpForo Forum Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Warning XSS in Master Addons(CVE20262486)

  • February 20, 2026
Cross Site Scripting (XSS) in WordPress Master Addons for Elementor Plugin
Read More
WWordPress Vulnerability Database

Protecting Users from Orderable Plugin Access Flaws(CVE20260974)

  • February 19, 2026
Broken Access Control in WordPress Orderable Plugin
Read More
WWordPress Vulnerability Database

Protect Against Prodigy Commerce Local File Inclusion(CVE20260926)

  • February 19, 2026
Local File Inclusion in WordPress Prodigy Commerce Plugin
Read More
WWordPress Vulnerability Database

Community Alert Arbitrary Deletion in WooCommerce(CVE202513930)

  • February 19, 2026
Arbitrary Content Deletion in WordPress WooCommerce Checkout Manager Plugin
Read More
WWordPress Vulnerability Database

Safeguard Hong Kong Libraries Against SQL Injection(CVE202512707)

  • February 19, 2026
SQL Injection in WordPress Library Management System Plugin
Read More
WWordPress Vulnerability Database

Protecting Users from Cookie Consent Access Flaws(CVE202511754)

  • February 19, 2026
Broken Access Control in WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent Plugin
Read More
WWordPress Vulnerability Database

Community Advisory WordPress Email Two Factor Vulnerability(CVE202513587)

  • February 19, 2026
Broken Authentication in WordPress Two Factor (2FA) Authentication via Email Plugin
Read More
WWordPress Vulnerability Database

Community Security Advisory Buyent Theme Privilege Escalation(CVE202513851)

  • February 19, 2026
Privilege Escalation in WordPress Buyent Theme
Read More
WWordPress Vulnerability Database

Community Security Alert Arbitrary File Download(CVE202513603)

  • February 19, 2026
Arbitrary File Download in WordPress WP AUDIO GALLERY Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
EN
ZH ZH_CN ES HI FR