Hong Kong Security Alert Themify Icons XSS(CVE202549395)
WordPress Themify Icons Plugin <= 2.0.3 - Cross Site Scripting (XSS) Vulnerability
Aviso de Seguridad CSRF en el complemento de Hojas de Inscripción (CVE202549391)
Complemento de Hojas de Inscripción de WordPress <= 2.3.3 - Vulnerabilidad de Cross Site Request Forgery (CSRF)
Community Alert NEX Forms CSRF Vulnerability(CVE202549399)
WordPress NEX-Forms Plugin <= 9.1.3 - Cross Site Request Forgery (CSRF) Vulnerability
Community Alert Contact Form 7 Deletion Risk(CVE20258141)
Plugin Name Redirection for Contact Form 7 Type of Vulnerability Unauthenticated File Deletion CVE Number CVE-2025-8141 Urgency High…
Alerta de Seguridad Comunitaria Vulnerabilidad del Contact Form 7 (CVE20258289)
Redirección de WordPress para el plugin Contact Form 7 <= 3.2.4 - Inyección de Objeto PHP no autenticada a través de la vulnerabilidad de Deserialización PHAR
Aviso de Seguridad de Hong Kong Contact Manager XSS(CVE20258783)
Complemento de Contact Manager de WordPress <= 8.6.5 - Autenticado (Administrador+) Vulnerabilidad de Cross-Site Scripting almacenado a través de 'title'
Alerta comunitaria Vulnerabilidad del importador de demostración ColorMag (CVE20259202)
Plugin WordPress ColorMag <= 4.0.19 - Falta de autorización para la instalación del importador de demostración ThemeGrill (Suscriptor+)
Community Alert Authenticated Stored Cross Site Scripting(CVE20258618)
WordPress WPC Smart Quick View for WooCommerce plugin <= 4.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via woosq_btn Shortcode vulnerability
Community Advisory Contact Form 7 Injection Risk(CVE20258145)
WordPress Redirection for Contact Form 7 plugin <= 3.2.4 - Unauthenticated PHP Object Injection vulnerability
Community Security Alert Easy Digital Downloads CSRF(CVE20258102)
WordPress Easy Digital Downloads plugin <= 3.5.0 - Cross-Site Request Forgery to Plugin Deactivation via edd_sendwp_disconnect and edd_sendwp_remote_install Functions vulnerability