WP Security
WWordPress Vulnerability Database

Hong Kong Advisory XSS in User Posts(CVE20260913)

  • January 18, 2026
Cross Site Scripting (XSS) in WordPress User Submitted Posts Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory PAYGENT Access Control(CVE202514078)

  • January 17, 2026
Broken Access Control in WordPress PAYGENT for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Safeguarding Users From Spin Wheel Access Flaws(CVE20260808)

  • January 17, 2026
Broken Access Control in WordPress Spin Wheel Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory IDOR in RepairBuddy(CVE20260820)

  • January 17, 2026
Insecure Direct Object References (IDOR) in WordPress RepairBuddy Plugin
Read More
WWordPress Vulnerability Database

Safeguard Hong Kong Websites Against SQL Injection(CVE202512984)

  • January 17, 2026
SQL Injection in WordPress Advanced Ads Plugin
Read More
WWordPress Vulnerability Database

Safeguarding Hong Kong WordPress Against Privilege Escalation(CVE202623800)

  • January 16, 2026
Privilege Escalation in WordPress Modular DS Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Websites From AffiliateX XSS(CVE202513859)

  • January 16, 2026
Cross Site Scripting (XSS) in WordPress AffiliateX Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Related Posts XSS(CVE20260916)

  • January 16, 2026
Cross Site Scripting (XSS) in WordPress Related Posts by Taxonomy Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Name Directory XSS(CVE202515283)

  • January 14, 2026
Cross Site Scripting (XSS) in WordPress Name Directory Plugin
Read More
WWordPress Vulnerability Database

Community Advisory XSS in List Site Contributors(CVE20260594)

  • January 14, 2026
Cross Site Scripting (XSS) in WordPress List Site Contributors Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French