Hong Kong Advisory Ninja Forms CSRF Threat(CVE202510499)
WordPress Ninja Forms plugin <= 3.12.0 - Cross-Site Request Forgery to Plugin Settings Update vulnerability
Hong Kong Security Alert WordPress Statistics XSS(CVE20259816)
WordPress WP Statistics plugin <= 14.5.4 - Unauthenticated Stored Cross-Site Scripting via User-Agent Header vulnerability
Hong Kong Security Notice wpmpdf XSS Risk(CVE202560040)
WordPress wp-mpdf Plugin <= 3.9.1 - Cross Site Scripting (XSS) Vulnerability
Alerta de Seguridad de Hong Kong Vulnerabilidad CSRF Vehica(CVE202560117)
Plugin Vehica Core de WordPress <= 1.0.100 - Vulnerabilidad de Falsificación de Solicitud entre Sitios (CSRF)
Community Alert XSS in Support Ticket Plugin(CVE202560157)
WordPress WP Ticket Customer Service Software & Support Ticket System Plugin <= 6.0.2 - Cross Site Scripting (XSS) Vulnerability
Hong Kong Security Alert Mega Elements XSS(CVE20258200)
WordPress Mega Elements plugin <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Timer Widget vulnerability
Hong Kong Security Alert OAuth SSO Vulnerability(CVE202510752)
WordPress OAuth Single Sign On – SSO (OAuth Client) plugin <= 6.26.12 - Cross-Site Request Forgery vulnerability
Hong Kong Security Alert Tiktok Feed XSS(CVE20258906)
WordPress Widgets for Tiktok Feed plugin <= 1.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Themify Builder Stored Cross Site Scripting Vulnerability(CVE20259353)
WordPress Themify Builder plugin <= 7.6.9 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Alerta de seguridad de la comunidad Spotlight de empleados de WordPress XSS(CVE202558915)
Plugin Spotlight de empleados de WordPress <= 5.1.0 - Vulnerabilidad de Cross Site Scripting (XSS)