WP Security

Browsing Category

WordPress Vulnerability Database

652 posts
WWordPress Vulnerability Database

DominoKit Plugin Poses Public Security Risk(CVE202512350)

  • November 4, 2025
WordPress DominoKit plugin <= 1.1.0 - Missing Authorization to Unauthenticated Settings Update vulnerability
WWordPress Vulnerability Database

Hong Kong Security Advisory Plugin Privilege Escalation(CVE202512158)

  • November 4, 2025
WordPress Simple User Capabilities plugin <= 1.0 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation vulnerability
WWordPress Vulnerability Database

Hong Kong Security Alert Payeer Payment Bypass(CVE202511890)

  • November 4, 2025
WordPress Crypto Payment Gateway with Payeer for WooCommerce plugin <= 1.0.3 - Unauthenticated Payment Bypass vulnerability
WWordPress Vulnerability Database

Hong Kong Security Advisory Post SMTP Exposure(CVE202511833)

  • November 3, 2025
WordPress Post SMTP plugin <= 3.6.0 - Missing Authorization to Account Takeover via Unauthenticated Email Log Disclosure vulnerability
WWordPress Vulnerability Database

Protecting Hong Kong Websites Against SiteSEO Vulnerability(CVE202512367)

  • November 3, 2025
WordPress SiteSEO plugin <= 1.3.1 - Missing Authorization to Authenticated (Author+) Plugin Settings Update vulnerability
WWordPress Vulnerability Database

Hong Kong Security Advisory Discourse Plugin Leak(CVE202511983)

  • November 3, 2025
WordPress WP Discourse plugin <= 2.5.9 - Authenticated (Author+) Information Exposure vulnerability
WWordPress Vulnerability Database

Urgent Alert ERI File Library Unauthenticated Access(CVE202512041)

  • November 1, 2025
WordPress ERI File Library plugin <= 1.1.0 - Missing Authorization to Unauthenticated Protected File Download vulnerability
WWordPress Vulnerability Database

Hong Kong Cybersecurity Alert Analytify Information Exposure(CVE202512521)

  • November 1, 2025
WordPress Analytify Pro plugin <= 7.0.3 - Unauthenticated Information Exposure vulnerability
WWordPress Vulnerability Database

Hong Kong Security Advisory Jobmonster Authentication Bypass(CVE20255397)

  • November 1, 2025
WordPress Jobmonster theme <= 4.8.1 - Authentication Bypass vulnerability
WWordPress Vulnerability Database

Protect Hong Kong Sites From ERI Exploit(CVE202512041)

  • November 1, 2025
WordPress ERI File Library plugin <= 1.1.0 - Missing Authorization to Unauthenticated Protected File Download vulnerability
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French