Hong Kong Security Notice Missing Plugin Authorization(CVE202510746)
WordPress Integrate Dynamics 365 CRM plugin <= 1.0.9 - Missing Authorization vulnerability
Security Advisory Restrict User Registration CSRF(CVE20259892)
WordPress Restrict User Registration plugin <= 1.0.1 - Cross-Site Request Forgery to Settings Update vulnerability
ContentMX Plugin CSRF Community Advisory(CVE20259889)
WordPress ContentMX Content Publisher plugin <= 1.0.6 - Cross-Site Request Forgery vulnerability
Community Security Alert Mobile Redirect XSS Risk(CVE20259884)
WordPress Mobile Site Redirect plugin <= 1.2.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability
Hong Kong Security Alert JoomSport Vulnerability(CVE20257721)
WordPress JoomSport plugin <= 5.7.3 - Unauthenticated Directory Traversal to Local File Inclusion vulnerability
Community Alert Notification Bar CSRF Vulnerability(CVE20259895)
WordPress Notification Bar plugin <= 2.2 - Cross-Site Request Forgery vulnerability
Community Alert Meks Easy Maps XSS Vulnerability(CVE20259206)
WordPress Meks Easy Maps plugin <= 2.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
Hong Kong Cybersecurity Alert WordPress Gallery Injection(CVE20259199)
WordPress Woo superb slideshow transition gallery with random effect plugin <= 9.1 - Authenticated (Contributor+) SQL Injection vulnerability
Community Security Notice Authenticated Contributor SQL Injection(CVE20259198)
WordPress Wp cycle text announcement plugin <= 8.1 - Authenticated (Contributor+) SQL Injection vulnerability
Community Advisory Flexi Plugin Stored XSS(CVE20259129)
WordPress Flexi plugin <= 4.28 - Authenticated (Contributor+) Stored Cross-Site Scripting via flexi-form-tag Shortcode vulnerability