WP Security
WWordPress Vulnerability Database

Hong Kong NGO Alert CSRF in AuthorSure(CVE202513134)

  • November 20, 2025
Cross Site Request Forgery (CSRF) in WordPress AuthorSure Plugin
Read More
WWordPress Vulnerability Database

Community Alert Access Control Vulnerability ELEX HelpDesk(CVE202512169)

  • November 20, 2025
Broken Access Control in WordPress ELEX WordPress HelpDesk & Customer Ticketing System Plugin
Read More
WWordPress Vulnerability Database

Hong Kong NGO Alert Bulma Shortcodes XSS(CVE202511802)

  • November 20, 2025
Cross Site Scripting (XSS) in WordPress Bulma Shortcodes Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Cross Site Scripting(CVE202512661)

  • November 20, 2025
Cross Site Scripting (XSS) in WordPress Pollcaster Shortcode Plugin Plugin
Read More
WWordPress Vulnerability Database

Security Advisory Royal Elementor Addons XSS(CVE20255092)

  • November 20, 2025
Cross Site Scripting (XSS) in WordPress Royal Elementor Addons Plugin
Read More
WWordPress Vulnerability Database

Security Advisory XSS in Image Hover Plugin(CVE20255092)

  • November 20, 2025
Cross Site Scripting (XSS) in WordPress Image Hover Effects Ultimate Plugin
Read More
WWordPress Vulnerability Database

Hong Kong NGO Alert GridKit XSS Threat(CVE20255092)

  • November 20, 2025
Cross Site Scripting (XSS) in WordPress Grid KIT Portfolio Plugin
Read More
WWordPress Vulnerability Database

Pet Manager Plugin XSS Community Advisory(CVE202512710)

  • November 19, 2025
Cross Site Scripting (XSS) in WordPress Pet-Manager
Read More
WWordPress Vulnerability Database

Protect Hong Kong Sites from SureForms CSRF(CVE202512535)

  • November 19, 2025
Cross Site Request Forgery (CSRF) in WordPress SureForms Plugin
Read More
WWordPress Vulnerability Database

Community Alert Broken Access Control in WooCommerce Crypto(CVE202512392)

  • November 18, 2025
Broken Access Control in WordPress Cryptocurrency Payment Gateway for WooCommerce Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French