WP Security
WWordPress Vulnerability Database

Safeguarding Hong Kong Sites From H5P Flaws(CVE202568505)

  • December 30, 2025
Broken Access Control in WordPress H5P Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong From Astra Widgets XSS(CVE202568497)

  • December 30, 2025
Cross Site Scripting (XSS) in WordPress Astra Widgets Plugin
Read More
WWordPress Vulnerability Database

Security Notice XSS in WordPress Search Filter(CVE202514312)

  • December 30, 2025
Cross Site Scripting (XSS) in WordPress Advance WP Query Search Filter Plugin
Read More
WWordPress Vulnerability Database

Protecting Hong Kong Data from Plugin Exposure(CVE202568040)

  • December 30, 2025
Sensitive Data Exposure in WordPress WP Project Manager Plugin
Read More
WWordPress Vulnerability Database

Hong Kong NGO Alert Plugin Access Flaw(CVE202514426)

  • December 30, 2025
Broken Access Control in WordPress Strong Testimonials Plugin
Read More
WWordPress Vulnerability Database

HK Security Alert RCE in Lucky Wheel(CVE202514509)

  • December 30, 2025
Remote Code Execution (RCE) in WordPress Lucky Wheel for WooCommerce – Spin a Sale Plugin
Read More
WWordPress Vulnerability Database

Protecting Users From Document Revisions Access Flaws(CVE202568585)

  • December 29, 2025
Broken Access Control in WordPress WP Document Revisions Plugin
Read More
WWordPress Vulnerability Database

Zota Theme Local File Inclusion Advisory(CVE202568537)

  • December 29, 2025
Local File Inclusion in WordPress Zota Theme
Read More
WWordPress Vulnerability Database

Protecting Hong Kong Sites from Vimeotheque CSRF(CVE202568584)

  • December 29, 2025
Cross Site Request Forgery (CSRF) in WordPress Vimeotheque Plugin
Read More
WWordPress Vulnerability Database

Public Safety Notice Funnelforms Access Control Flaw(CVE202568582)

  • December 29, 2025
Broken Access Control in WordPress Funnelforms Free Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French