WP Security

Hong Kong Security Notice UserPlus Access Flaw(CVE20249520)

Broken Access Control in WordPress UserPlus Plugin
Public Advisory XSS in Sell BTC(CVE202514554)
  • February 4, 2026
HK Security Advisory XSS in Schema Plugin(Unknown)
  • February 4, 2026
Hong Kong Security Alert Forum Plugin XSS(CVE202411204)
  • February 4, 2026
Community Alert Cross Site Scripting in WooCommerce(Unknown)
  • February 4, 2026
Hong Kong Security Alert Fortis WooCommerce Flaw(CVE20260679)
  • February 4, 2026
Community Alert Push Notification Plugin SQL Injection(CVE20260816)
  • February 4, 2026
WWordPress Vulnerability Database

Public Advisory XSS in Sell BTC(CVE202514554)

  • February 4, 2026
Cross Site Scripting (XSS) in WordPress Sell BTC – Cryptocurrency Selling Calculator Plugin
Read More
WWordPress Vulnerability Database

HK Security Advisory XSS in Schema Plugin(Unknown)

  • February 4, 2026
Cross Site Scripting (XSS) in WordPress Schema App Structured Data Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Forum Plugin XSS(CVE202411204)

  • February 4, 2026
Cross Site Scripting (XSS) in WordPress ForumWP Plugin
Read More
WWordPress Vulnerability Database

Community Alert Cross Site Scripting in WooCommerce(Unknown)

  • February 4, 2026
Cross Site Scripting (XSS) in WordPress WooCommerce PDF Invoice Builder Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Fortis WooCommerce Flaw(CVE20260679)

  • February 4, 2026
Broken Access Control in WordPress Fortis for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Community Alert Push Notification Plugin SQL Injection(CVE20260816)

  • February 4, 2026
SQL Injection in WordPress All push notification for WP Plugin
Read More
WWordPress Vulnerability Database

Safeguard Hong Kong Sites from SportsPress LFI(CVE202515368)

  • February 4, 2026
Local File Inclusion in WordPress SportsPress – Sports Club & League Manager Plugin
Read More
WWordPress Vulnerability Database

HK Security Advisory Chapa Plugin Data Exposure(CVE202515482)

  • February 4, 2026
Sensitive Data Exposure in WordPress Chapa Payment Gateway Plugin for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Community Advisory Sensitive Data Exposure in Extractor(CVE202515508)

  • February 4, 2026
Sensitive Data Exposure in WordPress Magic Import Document Extractor Plugin
Read More
WWordPress Vulnerability Database

Community Warning Code Explorer File Download Risk(CVE202515487)

  • February 4, 2026
Arbitrary File Download in WordPress Code Explorer Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French