WP Security

Hong Kong Security Alert Ocean Extra Access(CVE202634903)

Broken Access Control in WordPress Ocean Extra Plugin
Urgent Advisory on wpForo File Deletion(CVE20263666)
  • April 7, 2026
Amelia IDOR Threat to Hong Kong Websites(CVE20265465)
  • April 7, 2026
Hong Kong Security Alert XSS Travel Engine(CVE20262437)
  • April 6, 2026
Gutenverse Plugin XSS Community Alert(CVE20262924)
  • April 5, 2026
Hong Kong Alert Perfmatters File Deletion Risk(CVE20264350)
  • April 5, 2026
Security Advisory XSS in Royal Elementor Addons(CVE20260664)
  • April 4, 2026
WWordPress Vulnerability Database

Urgent Advisory on wpForo File Deletion(CVE20263666)

  • April 7, 2026
Arbitrary File Deletion in WordPress wpForo Forum Plugin
Read More
WWordPress Vulnerability Database

Amelia IDOR Threat to Hong Kong Websites(CVE20265465)

  • April 7, 2026
Insecure Direct Object References (IDOR) in WordPress Amelia Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert XSS Travel Engine(CVE20262437)

  • April 6, 2026
Cross Site Scripting (XSS) in WordPress WP Travel Engine Plugin
Read More
WWordPress Vulnerability Database

Gutenverse Plugin XSS Community Alert(CVE20262924)

  • April 5, 2026
Cross Site Scripting (XSS) in WordPress Gutenverse Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Alert Perfmatters File Deletion Risk(CVE20264350)

  • April 5, 2026
Arbitrary File Deletion in WordPress Perfmatters Plugin
Read More
WWordPress Vulnerability Database

Security Advisory XSS in Royal Elementor Addons(CVE20260664)

  • April 4, 2026
Cross Site Scripting (XSS) in WordPress Royal Elementor Addons Plugin
Read More
WWordPress Vulnerability Database

Gutenverse XSS Risk Endangers Hong Kong Websites(CVE20262924)

  • April 3, 2026
Cross Site Scripting (XSS) in WordPress Gutenverse Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Shortcodes Ultimate XSS(CVE20262480)

  • April 3, 2026
Cross Site Scripting (XSS) in WordPress Shortcodes Ultimate Plugin
Read More
WWordPress Vulnerability Database

Public Safety Alert XSS in MSTW League(CVE202634890)

  • April 2, 2026
Cross Site Scripting (XSS) in WordPress MSTW League Manager Plugin
Read More
WWordPress Vulnerability Database

Defend Hong Kong Members Against Access Flaws(CVE202634886)

  • April 2, 2026
Broken Access Control in WordPress Simple Membership Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout
0

Notifications

English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French