WP Security
WWordPress Vulnerability Database

Hong Kong NGO Warns WordPress Access Flaw(CVE202512655)

  • December 12, 2025
Broken Access Control in WordPress Hippoo Mobile App for WooCommerce Plugin
Read More
WWordPress Vulnerability Database

Safeguarding Hong Kong Sites Against IMAQ CSRF(CVE202513363)

  • December 11, 2025
Cross Site Request Forgery (CSRF) in WordPress IMAQ CORE Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Divelogs Widget XSS(CVE202513962)

  • December 11, 2025
Cross Site Scripting (XSS) in WordPress Divelogs Widget Plugin
Read More
WWordPress Vulnerability Database

Community Alert Job Portal File Download Flaw(CVE202514293)

  • December 11, 2025
Arbitrary File Download in WordPress WP Job Portal Plugin
Read More
WWordPress Vulnerability Database

Security Notice XSS Google Reviews Widget(CVE20259436)

  • December 11, 2025
Cross Site Scripting (XSS) in WordPress Widgets for Google Reviews Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory WordPress CSRF Risk(CVE202562873)

  • December 10, 2025
Cross Site Request Forgery (CSRF) in WordPress WP Flashy Marketing Automation Plugin
Read More
WWordPress Vulnerability Database

Community Security Alert XSS in WPeMatico(CVE202513031)

  • December 10, 2025
Cross Site Scripting (XSS) in WordPress WPeMatico RSS Feed Fetcher Plugin
Read More
WWordPress Vulnerability Database

Safeguard Hong Kong Sites Against FunnelKit XSS(CVE202566067)

  • December 9, 2025
Cross Site Scripting (XSS) in WordPress Funnel Builder by FunnelKit Plugin
Read More
WWordPress Vulnerability Database

Safeguarding Hong Kong Sites from Listar Flaws(CVE202512574)

  • December 8, 2025
Broken Access Control in WordPress Listar – Directory Listing & Classifieds Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert Envo Extra Plugin XSS(CVE202566066)

  • December 7, 2025
Cross Site Scripting (XSS) in WordPress Envo Extra Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French