Hong Kong Security Advisory Allegro SQL Injection(CVE202510048)
WordPress My Auctions Allegro Plugin plugin <= 3.6.31 - Authenticated (Admin+) SQL Injection vulnerability
NEXForms Authenticated Admin SQL Injection Alert(CVE202510185)
WordPress NEX-Forms – Plugin de Formularios Definitivos para WordPress <= 9.1.6 - Vulnerabilidad de Inyección SQL Autenticada (Admin+)
Community Alert Everest Backup Plugin Authorization Failure(CVE202511380)
WordPress Everest Backup plugin <= 2.3.5 - Missing Authorization to Unauthenticated Information Exposure vulnerability
Community Advisory WordPress JobHunt Authorization Bypass(CVE20257374)
WordPress WP JobHunt plugin <= 7.6 Authenticated (Custom+) Authorization Bypass vulnerability
Security Advisory TicketSpot Stored Cross Site Scripting(CVE20259875)
WordPress TicketSpot plugin <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Community Advisory Meks Easy Maps Stored XSS(CVE20259206)
WordPress Meks Easy Maps plugin <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Aviso de seguridad de HK Vulnerabilidad de Dynamics 365 CRM (CVE202510746)
WordPress Integrate Dynamics 365 CRM plugin <= 1.0.9 - Vulnerabilidad de falta de autorización
Fallo de Autorización del Plugin Constructor Amenaza a Sitios Comunitarios(CVE20259194)
Plugin Constructor de WordPress <= 1.6.5 - Falta de Autorización para Autenticados (Suscriptor+) Vulnerabilidad de Tema Limpio
Security Advisory Backup Bolt Plugin File Download(CVE202510306)
WordPress Backup Bolt plugin <= 1.4.1 - Authenticated (Admin+) Arbitrary File Download vulnerability
GiveWP Donation Plugin Authorization Flaw Advisory(CVE202511228)
WordPress GiveWP – Donation Plugin and Fundraising Platform plugin <= 4.10.0 - Missing Authorization to Unauthenticated Forms-Campaign Association vulnerability