WP Security
WWordPress Vulnerability Database

Community Alert XSS Vulnerability in Elementor Addons(CVE202412120)

  • February 3, 2026
Cross Site Scripting (XSS) in WordPress Royal Elementor Addons Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert NitroPack Access Flaw(CVE202411851)

  • February 3, 2026
Broken Access Control in WordPress NitroPack Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert SSRF in BuddyPress(CVE202411913)

  • February 3, 2026
Server Side Request Forgery (SSRF) in WordPress Activity Plus Reloaded for BuddyPress Plugin
Read More
WWordPress Vulnerability Database

Protecting Communities Against Snippet Shortcodes Access Risks(CVE202412018)

  • February 3, 2026
Broken Access Control in WordPress Snippet Shortcodes Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Users from IdeaPush Flaws(CVE202411844)

  • February 3, 2026
Broken Access Control in WordPress IdeaPush Plugin
Read More
WWordPress Vulnerability Database

Security Advisory DePay Access Control Vulnerability(CVE202412265)

  • February 3, 2026
Broken Access Control in WordPress Web3 Cryptocurrency Payments by DePay for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Users from Payment Form Exposure(CVE202412255)

  • February 3, 2026
Sensitive Data Exposure in WordPress Accept Stripe Payments Using Contact Form 7 Plugin
Read More
WWordPress Vulnerability Database

Community Alert XSS in Survey Plugin(CVE202412528)

  • February 3, 2026
Cross Site Scripting (XSS) in WordPress WordPress Survey & Poll Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory XSS in Simplebooklet(CVE202413588)

  • February 3, 2026
Cross Site Scripting (XSS) in WordPress Simplebooklet PDF Viewer and Embedder Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Sites from GamiPress Injection(CVE202413499)

  • February 3, 2026
Content Injection in WordPress GamiPress Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French