WP Security
WWordPress Vulnerability Database

Community Security Alert Arbitrary File Upload Risk(CVE202513066)

  • February 3, 2026
Arbitrary File Upload in WordPress Demo Importer Plus Plugin
Read More
WWordPress Vulnerability Database

Community Advisory DynamiApps Frontend Privilege Escalation(CVE202411721)

  • February 3, 2026
Privilege Escalation in WordPress Frontend Admin by DynamiApps Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Advisory Contentstudio Arbitrary File Upload(CVE202512181)

  • February 3, 2026
Arbitrary File Upload in WordPress Contentstudio Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Arena IM XSS(CVE202411384)

  • February 3, 2026
Cross Site Scripting (XSS) in WordPress Arena.IM – Live Blogging for real-time events Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Websites from Koalendar XSS(CVE202411855)

  • February 3, 2026
Cross Site Scripting (XSS) in WordPress Koalendar Plugin
Read More
WWordPress Vulnerability Database

Community Warning ElementInvader Access Control Flaw(CVE202412059)

  • February 3, 2026
Broken Access Control in WordPress ElementInvader Addons for Elementor Plugin
Read More
WWordPress Vulnerability Database

Protecting Community Sites from Events Plugin XSS(CVE202411875)

  • February 3, 2026
Cross Site Scripting (XSS) in WordPress Add infos to the events calendar Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Broken Authentication(CVE202413182)

  • February 3, 2026
Broken Authentication in WordPress WP Directorybox Manager Plugin
Read More
WWordPress Vulnerability Database

Community Alert Contact Form Seven XSS Vulnerability(CVE20240239)

  • February 3, 2026
Cross Site Scripting (XSS) in WordPress Contact Form 7 Connector Plugin
Read More
WWordPress Vulnerability Database

Address Drive Plugin Access Control Risks(CVE20242086)

  • February 3, 2026
Broken Access Control in WordPress Integrate Google Drive Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French