Filtered by vendor Wordpress
Subscriptions
Total
13785 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2026-57335 | 2 Ads By Wpquads, Wordpress | 2 Ads By Wpquads, Wordpress | 2026-07-01 | 6.5 Medium |
| Subscriber Broken Access Control in Ads by WPQuads <= 3.0.3 versions. | ||||
| CVE-2026-57341 | 2 Colissimo, Wordpress | 2 Colissimo Officiel : Méthodes De Livraison Pour Woocommerce, Wordpress | 2026-07-01 | 6.5 Medium |
| Unauthenticated Insecure Direct Object References (IDOR) in Colissimo Officiel : Méthodes de livraison pour WooCommerce <= 2.9.0 versions. | ||||
| CVE-2026-57326 | 2 Strategy11team, Wordpress | 2 Business Directory Plugin, Wordpress | 2026-07-01 | 6.5 Medium |
| Unauthenticated Cross Site Scripting (XSS) in Business Directory <= 6.4.22 versions. | ||||
| CVE-2026-57328 | 2 Strategy11team, Wordpress | 2 Business Directory Plugin, Wordpress | 2026-07-01 | 6.5 Medium |
| Subscriber Cross Site Scripting (XSS) in Business Directory <= 6.4.22 versions. | ||||
| CVE-2026-57330 | 2 Stylemixthemes, Wordpress | 2 Masterstudy Lms, Wordpress | 2026-07-01 | 6.5 Medium |
| Subscriber Cross Site Scripting (XSS) in MasterStudy LMS <= 3.7.27 versions. | ||||
| CVE-2026-57331 | 2 Videowhisper.com, Wordpress | 2 Paid Videochat Turnkey Site, Wordpress | 2026-07-01 | 9.9 Critical |
| Performer Arbitrary File Deletion in Paid Videochat Turnkey Site <= 7.4.8 versions. | ||||
| CVE-2026-57948 | 3 Pinpoint, Pinpoint-apm, Wordpress | 3 Pinpoint Booking System, Pinpoint, Wordpress | 2026-07-01 | 6.8 Medium |
| Pinpoint through version 3.1.0 contains an insecure session management vulnerability that allows attackers to access the pinpointJwt session cookie due to missing HttpOnly and Secure attributes, enabling JavaScript access via document.cookie and cleartext transmission over HTTP. Attackers can exploit stored or reflected cross-site scripting vulnerabilities to exfiltrate the session token or intercept it through network sniffing to perform session hijacking. | ||||
| CVE-2026-12114 | 2 Wordpress, Wpmart | 2 Wordpress, Team Members – Multi Language Supported Team Plugin | 2026-07-01 | 4.4 Medium |
| The Team Members – Multi Language Supported Team Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 8.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled. | ||||
| CVE-2026-8944 | 2 Engagementanalytics, Wordpress | 2 Plugin For Google Analytics By Io Technologies, Wordpress | 2026-07-01 | 4.3 Medium |
| The Plugin for Google Analytics by IO technologies plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1. This is due to missing or incorrect nonce validation on the Google Analytics settings page (ga.php). This makes it possible for unauthenticated attackers to update the plugin's stored Google Analytics tracking ID option (io-ga-id) via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. | ||||
| CVE-2026-11367 | 2 Andrasweb, Wordpress | 2 Pixmagix – Wordpress Image Editor, Wordpress | 2026-07-01 | 6.5 Medium |
| The PixMagix – WordPress Image Editor plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.7.2 via the move_image_on_server function. This makes it possible for authenticated attackers, with author-level access and above, to write files with attacker-controlled content to arbitrary locations on the server. The unsanitized 'layers[].id' parameter is concatenated into a filesystem path and passed to PHP's copy() function, allowing traversal sequences (e.g. '../../') to escape the intended upload directory and write attacker-supplied file contents to arbitrary paths accessible by the web server process. The save_template REST endpoint is gated by the create_projects permission (edit_pixmagix + upload_files), which Author-level users hold by default after plugin activation, making this exploitable by any Author on sites running PixMagix. | ||||
| CVE-2026-9576 | 2 Fluent Booking, Wordpress | 2 Fluent Booking, Wordpress | 2026-07-01 | 4.9 Medium |
| The Fluent Booking WordPress plugin before 2.1.2 does not verify ownership of the requested group_id before exporting attendee data via the export endpoint, allowing users with at least the Calendar Manager role to retrieve attendees' PII (name, email, phone, address, payment information) from calendar groups they do not own. | ||||
| CVE-2026-12240 | 2 Qlstudio, Wordpress | 2 Export User Data, Wordpress | 2026-07-01 | 8 High |
| The Export User Data plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the unserialize function in all versions up to, and including, 2.2.6. This makes it possible for authenticated attackers, with subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). Successful exploitation requires an administrator to trigger a user data export while a subscriber-level (or higher) user has stored a crafted serialized XLSXWriter object payload as their display name. | ||||
| CVE-2026-9711 | 2 Eventon, Wordpress | 2 Eventon (pro) - Wordpress Virtual Event Calendar Plugin, Wordpress | 2026-07-01 | 9.8 Critical |
| The EventON - WordPress Virtual Event Calendar Plugin plugin for WordPress (full) is vulnerable to SQL Injection via the WordPress 'search' parameter in versions up to, and including, 5.0.11 due to insufficient escaping on the user supplied parameter and lack of preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database, granted the "Enable additional search queries" setting is enabled and at least one published event exists. | ||||
| CVE-2026-8141 | 2 Connekt Media, Wordpress | 2 Ajax Load More - Filters, Wordpress | 2026-07-01 | 7.2 High |
| The Ajax Load More - Filters plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'taxonomy_include_children' parameter in all versions up to, and including, 3.4.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. | ||||
| CVE-2026-57339 | 2 Strategy11team, Wordpress | 2 Business Directory Plugin, Wordpress | 2026-07-01 | 6.6 Medium |
| Unauthenticated Broken Access Control in Business Directory <= 6.4.23 versions. | ||||
| CVE-2026-57947 | 3 Pinpoint, Pinpoint-apm, Wordpress | 3 Pinpoint Booking System, Pinpoint, Wordpress | 2026-07-01 | 8.5 High |
| Pinpoint through 3.1.0 contains a server-side request forgery vulnerability in the webhook registration endpoint that allows authenticated users to register internal URLs due to missing SSRF protection. Attackers can trigger alarm threshold breaches to force the server to issue POST requests to internal hosts and metadata endpoints, enabling unauthorized access to internal network resources. | ||||
| CVE-2026-11581 | 2 Wordpress, Wpchill | 2 Wordpress, Kali Forms — Contact Form & Drag-and-drop Builder | 2026-07-01 | 5.9 Medium |
| The Kali Forms — Contact Form & Drag-and-Drop Builder WordPress plugin before 2.4.13 does not sanitise a form field's caption before outputting it as a column header on the administrator form-entries screen, allowing users with Contributor-level access or above to store JavaScript that executes in an administrator's session. A missing capability check in the Kali Forms — Contact Form & Drag-and-Drop Builder WordPress plugin before 2.4.13's post-duplication action additionally lets the Contributor publish the malicious form so an administrator renders it. | ||||
| CVE-2026-11589 | 2 Wordpress, Wpsupportplus | 2 Wordpress, Wp Support Plus Responsive Ticket System | 2026-07-01 | 8.8 High |
| The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploaded files, allowing unauthenticated users to upload files containing malicious JavaScript (such as HTML or SVG) to a publicly accessible location, leading to Stored Cross-Site Scripting attacks against site users and administrators. | ||||
| CVE-2026-11590 | 2 Wordpress, Wpsupportplus | 2 Wordpress, Wp Support Plus Responsive Ticket System | 2026-07-01 | 8.6 High |
| The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied array keys before using them in a SQL statement, allowing unauthenticated users to perform SQL injection attacks. | ||||
| CVE-2026-56024 | 2 Saad Iqbal, Wordpress | 2 Wp Easypay, Wordpress | 2026-07-01 | 6.5 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability in Saad Iqbal WP EasyPay allows Cross Site Request Forgery. This issue affects WP EasyPay: from n/a through 4.5.0. | ||||