WP Security
WWordPress Vulnerability Database

Protect Hong Kong Sites from Checkout XSS(CVE20263231)

  • March 14, 2026
Cross Site Scripting (XSS) in WordPress Checkout Field Editor (Checkout Manager) for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Community Advisory XSS Risk in Name Directory(CVE20263178)

  • March 14, 2026
Cross Site Scripting (XSS) in WordPress Name Directory Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert PixelYourSite XSS(CVE20261841)

  • March 14, 2026
Cross Site Scripting (XSS) in WordPress PixelYourSite – Your smart PIXEL (TAG) Manager Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Sites from ExactMetrics Escalation(CVE20261993)

  • March 14, 2026
Privilege Escalation in WordPress ExactMetrics Plugin
Read More
WWordPress Vulnerability Database

Protecting Community Data from Front Editor Exposure(CVE20261867)

  • March 14, 2026
Sensitive Data Exposure in WordPress WP Front User Submit / Front Editor Plugin
Read More
WWordPress Vulnerability Database

DukaPress XSS Community Security Alert(CVE20262466)

  • March 14, 2026
Cross Site Scripting (XSS) in WordPress DukaPress Plugin
Read More
WWordPress Vulnerability Database

Security Advisory Pix for WooCommerce Upload Vulnerability(CVE20263891)

  • March 13, 2026
Arbitrary File Upload in WordPress Pix for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Broken Access Control(CVE20263045)

  • March 13, 2026
Broken Access Control in WordPress Simply Schedule Appointments Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security NGO Warns GetGenie IDOR(CVE20262879)

  • March 13, 2026
Insecure Direct Object References (IDOR) in WordPress GetGenie Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Calculated Fields XSS(CVE20263986)

  • March 13, 2026
Cross Site Scripting (XSS) in WordPress Calculated Fields Form Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout
0

Notifications

English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French