WP Security

Browsing Tag

WordPress Security

252 posts
WWordPress Vulnerability Database

Hong Kong Advisory Ajax Search Lite Exposure(CVE20257956)

  • August 28, 2025
WordPress Ajax Search Lite plugin <= 4.13.1 - Missing Authorization to Unauthenticated Basic Information Exposure via ASL_Query in AJAX Search Handler vulnerability
WWordPress Vulnerability Database

Beaver Builder Reflected Cross Site Scripting Vulnerability(CVE20258897)

  • August 28, 2025
WordPress Beaver Builder Plugin (Lite Version) plugin <= 2.9.2.1 - Reflected Cross-Site Scripting vulnerability
WWordPress Vulnerability Database

Community Alert ArcHub Authorization Vulnerability(CVE20250951)

  • August 28, 2025
WordPress ArcHub theme <= 1.2.12 - Missing Authorization to Authenticated (Subscriber+) All Plugins Deactivated vulnerability
WWordPress Vulnerability Database

Community Alert Hub Theme Authorization Weakness(CVE20250951)

  • August 28, 2025
WordPress Hub theme <= 5.0.7 - Missing Authorization to Authenticated (Subscriber+) All Plugins Deactivated vulnerability
WWordPress Vulnerability Database

Urgent Advisory Managefy Plugin Path Traversal(CVE20259345)

  • August 28, 2025
WordPress File Manager, Code Editor, and Backup by Managefy plugin <= 1.4.8 - Authenticated (Admin+) Path Traversal to Arbitrary File Download vulnerability
WWordPress Vulnerability Database

Hong Kong Security Alert StopBadBots Bypass(CVE20259376)

  • August 28, 2025
WordPress StopBadBots plugin <= 11.58 - Insufficient Authorization to Unauthenticated Blocklist Bypass vulnerability
WWordPress Vulnerability Database

Hong Kong Security Alert ULike Pro Risk(CVE20249648)

  • August 28, 2025
WordPress WP ULike Pro plugin <= 1.9.3 - Unauthenticated Limited Arbitrary File Upload vulnerability
WWordPress Vulnerability Database

Hong Kong Security Advisory Contributor Stored XSS(CVE20259346)

  • August 28, 2025
WordPress Booking Calendar plugin <= 10.14.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
WWordPress Vulnerability Database

Community Advisory Pronamic Google Maps XSS(CVE20259352)

  • August 27, 2025
WordPress Pronamic Google Maps plugin <= 2.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
WWordPress Vulnerability Database

Hong Kong Security Advisory UsersWP Stored XSS(CVE20259344)

  • August 27, 2025
WordPress UsersWP plugin <= 1.2.42 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability
WP Security
© 2025 WP-Security.org Disclaimer: WP-Security.org is an independent, non-profit NGO community committed to sharing WordPress security news and information. We are not affiliated with WordPress, its parent company, or any related entities. All trademarks are the property of their respective owners.

Review My Order

0

Subtotal

Taxes & shipping calculated at checkout

Checkout

 
0