Community Alert Trinity Audio Information Exposure(CVE20259196)
WordPress Trinity Audio plugin <= 5.21.0 - Unauthenticated Information Exposure vulnerability
Hong Kong Security Advisory Allegro SQL Injection(CVE202510048)
WordPress My Auctions Allegro Plugin plugin <= 3.6.31 - Authenticated (Admin+) SQL Injection vulnerability
Alerte d'injection SQL Admin authentifié NEXForms (CVE202510185)
WordPress NEX-Forms – Plugin Ultimate Forms pour WordPress <= 9.1.6 - Vulnérabilité d'injection SQL authentifiée (Admin+)
Alerte de la communauté Échec d'autorisation du plugin Everest Backup (CVE202511380)
WordPress Everest Backup plugin <= 2.3.5 - Missing Authorization to Unauthenticated Information Exposure vulnerability
Avis communautaire Contournement d'autorisation JobHunt WordPress (CVE20257374)
WordPress WP JobHunt plugin <= 7.6 Authenticated (Custom+) Authorization Bypass vulnerability
Security Advisory TicketSpot Stored Cross Site Scripting(CVE20259875)
WordPress TicketSpot plugin <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Avis communautaire Meks Easy Maps XSS stocké (CVE20259206)
Plugin WordPress Meks Easy Maps <= 2.1.4 - Vulnérabilité de Cross-Site Scripting stockée authentifiée (Contributor+)
Avis de sécurité de HK Dynamics 365 CRM Vulnérabilité (CVE202510746)
WordPress Integrate Dynamics 365 CRM plugin <= 1.0.9 - Missing Authorization vulnerability
La faille d'autorisation du plugin Constructor menace les sites communautaires (CVE20259194)
WordPress Constructor plugin <= 1.6.5 - Missing Authorization to Authenticated (Subscriber+) Theme Clean vulnerability
Security Advisory Backup Bolt Plugin File Download(CVE202510306)
WordPress Backup Bolt plugin <= 1.4.1 - Authenticated (Admin+) Arbitrary File Download vulnerability