Hong Kong Security Advisory Plugin Privilege Escalation(CVE202512158)
WordPress Simple User Capabilities plugin <= 1.0 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation vulnerability
Hong Kong Security Alert Payeer Payment Bypass(CVE202511890)
WordPress Crypto Payment Gateway with Payeer for WooCommerce plugin <= 1.0.3 - Unauthenticated Payment Bypass vulnerability
Hong Kong Security Advisory Post SMTP Exposure(CVE202511833)
WordPress Post SMTP plugin <= 3.6.0 - Missing Authorization to Account Takeover via Unauthenticated Email Log Disclosure vulnerability
Protecting Hong Kong Websites Against SiteSEO Vulnerability(CVE202512367)
WordPress SiteSEO plugin <= 1.3.1 - Missing Authorization to Authenticated (Author+) Plugin Settings Update vulnerability
Hong Kong Security Advisory Discourse Plugin Leak(CVE202511983)
WordPress WP Discourse plugin <= 2.5.9 - Authenticated (Author+) Information Exposure vulnerability
Urgent Alert ERI File Library Unauthenticated Access(CVE202512041)
WordPress ERI File Library plugin <= 1.1.0 - Missing Authorization to Unauthenticated Protected File Download vulnerability
Hong Kong Cybersecurity Alert Analytify Information Exposure(CVE202512521)
WordPress Analytify Pro plugin <= 7.0.3 - Unauthenticated Information Exposure vulnerability
Hong Kong Security Advisory Jobmonster Authentication Bypass(CVE20255397)
WordPress Jobmonster theme <= 4.8.1 - Authentication Bypass vulnerability
Protect Hong Kong Sites From ERI Exploit(CVE202512041)
WordPress ERI File Library plugin <= 1.1.0 - Missing Authorization to Unauthenticated Protected File Download vulnerability
Community Security Advisory Unauthenticated Log Poisoning(CVE202511627)
WordPress Site Checkup AI Troubleshooting with Wizard and Tips for Each Issue plugin <= 1.47 - Unauthenticated Log File Poisoning vulnerability