Professional Contact Form CSRF Alert(CVE20259944)
WordPress Professional Contact Form plugin <= 1.0.0 - Cross-Site Request Forgery to Test Email Sending vulnerability
Hong Kong Advisory Ninja Forms CSRF Threat(CVE202510499)
WordPress Ninja Forms plugin <= 3.12.0 - Cross-Site Request Forgery to Plugin Settings Update vulnerability
Hong Kong Security Alert WordPress Statistics XSS(CVE20259816)
WordPress WP Statistics plugin <= 14.5.4 - Unauthenticated Stored Cross-Site Scripting via User-Agent Header vulnerability
Hong Kong Security Notice wpmpdf XSS Risk(CVE202560040)
WordPress wp-mpdf Plugin <= 3.9.1 - Cross Site Scripting (XSS) Vulnerability
Hong Kong Security Alert Vehica CSRF Vulnerability(CVE202560117)
WordPress Vehica Core Plugin <= 1.0.100 - Cross Site Request Forgery (CSRF) Vulnerability
Community Alert XSS in Support Ticket Plugin(CVE202560157)
WordPress WP Ticket Customer Service Software & Support Ticket System Plugin <= 6.0.2 - Cross Site Scripting (XSS) Vulnerability
Hong Kong Security Alert Mega Elements XSS(CVE20258200)
WordPress Mega Elements plugin <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown Timer Widget vulnerability
Hong Kong Security Alert OAuth SSO Vulnerability(CVE202510752)
WordPress OAuth Single Sign On – SSO (OAuth Client) plugin <= 6.26.12 - Cross-Site Request Forgery vulnerability
Hong Kong Security Alert Tiktok Feed XSS(CVE20258906)
WordPress Widgets for Tiktok Feed plugin <= 1.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Vulnérabilité de script intersite stocké du constructeur Themify (CVE20259353)
Plugin WordPress Themify Builder <= 7.6.9 - Authentifié (Contributeur+) vulnérabilité de script intersite stocké