WP Security

Community Alert Optimole XSS Threat(CVE20265217)

Cross Site Scripting (XSS) in WordPress Optimole Plugin
Hong Kong Security Advisory XSS in Optimole(CVE20265226)
  • April 13, 2026
Webling Plugin Cross Site Scripting Advisory(CVE20261263)
  • April 13, 2026
UsersWP Plugin XSS Endangers Community Websites(CVE20265742)
  • April 13, 2026
Securing WooCommerce Reviews for Hong Kong Users(CVE20264664)
  • April 13, 2026
Perfmatters Directory Traversal Security Alert(CVE20264351)
  • April 12, 2026
Hong Kong Security Alert Tutor LMS Access Flaw(CVE20263360)
  • April 12, 2026
WWordPress Vulnerability Database

Hong Kong Security Advisory XSS in Optimole(CVE20265226)

  • April 13, 2026
Cross Site Scripting (XSS) in WordPress Optimole Plugin
Read More
WWordPress Vulnerability Database

Webling Plugin Cross Site Scripting Advisory(CVE20261263)

  • April 13, 2026
Cross Site Scripting (XSS) in WordPress Webling Plugin
Read More
WWordPress Vulnerability Database

UsersWP Plugin XSS Endangers Community Websites(CVE20265742)

  • April 13, 2026
Cross Site Scripting (XSS) in WordPress UsersWP Plugin
Read More
WWordPress Vulnerability Database

Securing WooCommerce Reviews for Hong Kong Users(CVE20264664)

  • April 13, 2026
Broken Authentication in WordPress Customer Reviews for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Perfmatters Directory Traversal Security Alert(CVE20264351)

  • April 12, 2026
Directory Traversal in WordPress Perfmatters Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Tutor LMS Access Flaw(CVE20263360)

  • April 12, 2026
Broken Access Control in WordPress Tutor LMS Plugin
Read More
WWordPress Vulnerability Database

Securing Vendor Access for Community Safety(NOCVE)

  • April 12, 2026
Vendor Portal
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory XSS in AddFunc(CVE20262305)

  • April 10, 2026
Cross Site Scripting (XSS) in WordPress AddFunc Head & Footer Code Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Alert XSS in Download Manager(CVE20265357)

  • April 10, 2026
Cross Site Scripting (XSS) in WordPress Download Manager Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Alert MStore API IDOR Risk(CVE20263568)

  • April 10, 2026
Insecure Direct Object References (IDOR) in WordPress MStore API Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout
0

Notifications

English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French