WP Security
WWordPress Vulnerability Database

Public Notice PHP Object Injection in Modal(CVE202568526)

  • February 13, 2026
PHP Object Injection in WordPress Modal Popup Box Plugin
Read More
WWordPress Vulnerability Database

Protect Hong Kong Websites From XSS Threats(CVE20245542)

  • February 13, 2026
Cross Site Scripting (XSS) in WordPress Master Addons for Elementor Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Plugin SQL Injection(CVE202624956)

  • February 13, 2026
SQL Injection in WordPress Download Manager Addons for Elementor Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Zota LFI(CVE202568536)

  • February 13, 2026
Local File Inclusion in WordPress Zota Theme
Read More
WWordPress Vulnerability Database

Hong Kong Security Advisory Slimstat SQL Injection(CVE202513431)

  • February 13, 2026
SQL Injection in WordPress Slimstat Analytics Plugin
Read More
WWordPress Vulnerability Database

Security Advisory Privilege Escalation in Videospirecore Plugin(CVE202515096)

  • February 13, 2026
Privilege Escalation in WordPress Videospirecore Theme Plugin
Read More
WWordPress Vulnerability Database

Security Advisory Arbitrary File Upload WPvivid Plugin(CVE20261357)

  • February 13, 2026
Arbitrary File Upload in WordPress WPvivid Backup and Migration Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert BuddyHolis XSS Risk(CVE20261853)

  • February 13, 2026
Cross Site Scripting (XSS) in WordPress BuddyHolis ListSearch Plugin
Read More
WWordPress Vulnerability Database

Hong Kong Security Alert XSS in WPlyr(CVE20260724)

  • February 13, 2026
Cross Site Scripting (XSS) in WordPress WPlyr Media Block Plugin
Read More
WWordPress Vulnerability Database

Community Alert XSS Vulnerability in WDES Popup(CVE20261804)

  • February 13, 2026
Cross Site Scripting (XSS) in WordPress WDES Responsive Popup Plugin
Read More
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

hi there 👋 Sign up to receive awesome WP-Security Alert and update in your inbox, every week.

We don’t spam! Read our privacy policy for more info.

Check your inbox or spam folder to confirm your subscription.

Review My Order

0

Suggested for you

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0
English
Chinese (Hong Kong) Chinese (China) Spanish Hindi French