WP Security
WWordPress Vulnerability Database

Hong Kong Cybersecurity Alert Event Listing XSS(CVE20261252)

  • February 6, 2026
Cross Site Scripting (XSS) in WordPress Events Listing Widget Plugin
Read More
WWordPress Vulnerability Database

Security Advisory Employee Directory Cross Site Scripting(CVE20261279)

  • February 6, 2026
Cross Site Scripting (XSS) in WordPress Employee Directory Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Docus Plugin XSS(CVE20261888)

  • February 6, 2026
Cross Site Scripting (XSS) in WordPress Docus Plugin
Read More
WWordPress Vulnerability Database

HK NGO Alerts XSS in Orange Comfort(CVE20261808)

  • February 6, 2026
Cross Site Scripting (XSS) in WordPress Orange Comfort+ accessibility toolbar for WordPress Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Cybersecurity Alert WordPress OAuth Flaw(CVE202510753)

  • February 6, 2026
Broken Access Control in WordPress OAuth Single Sign On – SSO (OAuth Client) Plugin
Read More
WWordPress Vulnerability Database

Protecting Hong Kong Websites from SSRF Attacks(CVE20236991)

  • February 5, 2026
Server Side Request Forgery (SSRF) in WordPress JSM file_get_contents() Shortcode Plugin
Read More
WWordPress Vulnerability Database

Community Advisory Post SMTP Plugin SQL Injection(CVE20236620)

  • February 5, 2026
SQL Injection in WordPress Post SMTP Plugin
Read More
WWordPress Vulnerability Database

Relevanssi Premium IDOR Threatens User Privacy(CVE20237199)

  • February 5, 2026
Insecure Direct Object References (IDOR) in WordPress Relevanssi Premium Plugin
Read More
WWordPress Vulnerability Database

Security Advisory XSS in WordPress Countdown(CVE20261654)

  • February 5, 2026
Cross Site Scripting (XSS) in WordPress Peter’s Date Countdown Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Websites from Image Exploits(CVE20261246)

  • February 5, 2026
Arbitrary File Download in WordPress ShortPixel Image Optimizer Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French