Civic Security Advisory Colorbox XSS Vulnerability(CVE202549397)
WordPress Colorbox Lightbox Plugin <= 1.1.5 - Cross Site Scripting (XSS) Vulnerability
Hong Kong Security Alert Themify Icons XSS(CVE202549395)
WordPress Themify Icons Plugin <= 2.0.3 - Cross Site Scripting (XSS) Vulnerability
Security Advisory CSRF in Signup Sheets Plugin(CVE202549391)
WordPress Sign-up Sheets Plugin <= 2.3.3 - Cross Site Request Forgery (CSRF) Vulnerability
Community Alert NEX Forms CSRF Vulnerability(CVE202549399)
WordPress NEX-Forms Plugin <= 9.1.3 - Cross Site Request Forgery (CSRF) Vulnerability
Community Alert Contact Form 7 Deletion Risk(CVE20258141)
Plugin Name Redirection for Contact Form 7 Type of Vulnerability Unauthenticated File Deletion CVE Number CVE-2025-8141 Urgency High…
Community Security Alert Contact Form 7 Vulnerability(CVE20258289)
WordPress Redirection for Contact Form 7 plugin <= 3.2.4 - Unauthenticated PHP Object Injection via PHAR Deserialization vulnerability
Hong Kong Security Advisory Contact Manager XSS(CVE20258783)
WordPress Contact Manager plugin <= 8.6.5 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'title' vulnerability
Community Alert ColorMag Demo Importer Vulnerability(CVE20259202)
WordPress ColorMag plugin <= 4.0.19 - Missing Authorization to Authenticated (Subscriber+) ThemeGrill Demo Importer Plugin Installation vulnerability
Community Alert Authenticated Stored Cross Site Scripting(CVE20258618)
WordPress WPC Smart Quick View for WooCommerce plugin <= 4.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via woosq_btn Shortcode vulnerability
Community Advisory Contact Form 7 Injection Risk(CVE20258145)
WordPress Redirection for Contact Form 7 plugin <= 3.2.4 - Unauthenticated PHP Object Injection vulnerability