WP Security
WWordPress Vulnerability Database

Protecting Users from Category Dropdown XSS(CVE202514132)

  • December 12, 2025
Cross Site Scripting (XSS) in WordPress Category Dropdown List Plugin
Read More
WWordPress Vulnerability Database

Community Alert XSS in VigLink Spotlight Plugin(CVE202513843)

  • December 12, 2025
Cross Site Scripting (XSS) in WordPress VigLink SpotLight By ShortCode Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Websites from MailerLite XSS(CVE202513993)

  • December 12, 2025
Cross Site Scripting (XSS) in WordPress MailerLite
Read More
WWordPress Vulnerability Database

Community Alert Broken Access Controls Bike Rental(CVE202514065)

  • December 12, 2025
Broken Access Control in WordPress Simple Bike Rental Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security NGO Warns Mailgun XSS(CVE202511876)

  • December 12, 2025
Cross Site Scripting (XSS) in WordPress Mailgun Subscriptions Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Cybersecurity Alert Theme Changer Flaw(CVE202514392)

  • December 12, 2025
Broken Access Control in WordPress Simple Theme Changer Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Rabbit Hole CSRF(CVE202513366)

  • December 12, 2025
Cross Site Request Forgery (CSRF) in WordPress Rabbit Hole Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Notice Donation SQL Injection(CVE202513001)

  • December 12, 2025
SQL Injection in WordPress Donation Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Users From Data Exposure(CVE202513660)

  • December 12, 2025
Sensitive Data Exposure in WordPress Guest Support Plugin
Read More
WWordPress Vulnerability Database

Hong Kong NGO Warns WordPress Access Flaw(CVE202512655)

  • December 12, 2025
Broken Access Control in WordPress Hippoo Mobile App for WooCommerce Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French