WP Security

Browsing Tag

WordPress Security

577 posts
WWordPress Vulnerability Database

Urgent Advisory LearnPress Database Authorization Flaw(CVE202511372)

  • October 18, 2025
WordPress LearnPress – WordPress LMS Plugin plugin <= 4.2.9.3 - Missing Authorization to Unauthenticated Database Table Manipulation vulnerability
WWordPress Vulnerability Database

Hong Kong GSpeech TTS Security Advisory(CVE202510187)

  • October 18, 2025
WordPress GSpeech TTS – WordPress Text To Speech Plugin plugin <= 3.17.13 - Authenticated (Admin+) SQL injection vulnerability
WWordPress Vulnerability Database

Hong Kong Security Notice PPOM SQL Injection(CVE202511691)

  • October 18, 2025
WordPress PPOM – Product Addons & Custom Fields for WooCommerce plugin <= 33.0.15 - Unauthenticated SQL Injection vulnerability
WWordPress Vulnerability Database

Public Advisory WordPress Map Plugin Cache Poisoning(CVE202511703)

  • October 18, 2025
WordPress WP Go Maps (formerly WP Google Maps) plugin <= 9.0.48 - Unauthenticated Cache Poisoning vulnerability
WWordPress Vulnerability Database

Hong Kong Security Alert WPBakery XSS Risk(CVE202510006)

  • October 18, 2025
WordPress WPBakery Page Builder plugin <= 8.6 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
WWordPress Vulnerability Database

Community Security Alert PowerBI Plugin Data Exposure(CVE202510750)

  • October 18, 2025
WordPress PowerBI Embed Reports plugin <= 1.2.0 - Unauthenticated Sensitive Information Disclosure vulnerability
WWordPress Vulnerability Database

Hong Kong Security Advisory Event Tickets Bypass(CVE202511517)

  • October 18, 2025
WordPress Event Tickets and Registration plugin <= 5.26.5 - Unauthenticated Ticket Payment Bypass vulnerability
WWordPress Vulnerability Database

Community Alert Theme Editor CSRF Enables RCE(CVE20259890)

  • October 18, 2025
WordPress Theme Editor plugin <= 3.0 - Cross-Site Request Forgery to Remote Code Execution vulnerability
WWordPress Vulnerability Database

Hong Kong Security Alert WordPress Map Injection(CVE202511365)

  • October 16, 2025
WordPress WP Google Map Plugin plugin <= 1.0 - Authenticated (Contributor+) SQL Injection vulnerability
WWordPress Vulnerability Database

HK Security Alert Quick Featured Images Flaw(CVE202511176)

  • October 16, 2025
WordPress Quick Featured Images plugin <= 13.7.2 - Insecure Direct Object Reference to Image Manipulation vulnerability
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.
en_USEnglish
zh_HKChinese (Hong Kong) zh_CNChinese (China) en_USEnglish

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0