Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2026-04-15
CVE-2026-1072 - Keybase.io Verification Plugin
The Keybase.io Verification plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.5. This is due to missing nonce validation when updating plugin settings. This makes it possible for unauthenticated attackers to update the Keybase verification text via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
PLUGIN
Keybase.io Verification
CVE-2026-1072
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-12356 - Manage Events Plugin
The Tickera – Sell Tickets & Manage Events plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wp_ajax_change_ticket_status' AJAX endpoint in all versions up to, and including, 3.5.6.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update post/event statuses.
PLUGIN
Manage Events
CVE-2025-12356
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-11737 - Vk All In One Expansion Unit Plugin
The VK All in One Expansion Unit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'vkExUnit_sns_title' parameter in all versions up to, and including, 9.112.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Vk All In One Expansion Unit
CVE-2025-11737
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-2576 - Business Directory Plugin
The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'payment' parameter in all versions up to, and including, 6.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
PLUGIN
Business Directory
CVE-2026-2576
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1931 - Rent Fetch Plugin
The Rent Fetch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'keyword' parameter in all versions up to, and including, 0.32.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Rent Fetch
CVE-2026-1931
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1925 - EmailKit – Email Customizer for WooCommerce & WP Plugin
The EmailKit – Email Customizer for WooCommerce & WP plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the 'update_template_data' function in all versions up to, and including, 1.6.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify the title of any post on the site, including posts, pages, and custom post types.
PLUGIN
EmailKit – Email Customizer for WooCommerce & WP
CVE-2026-1925
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1714 - All In One Solution Plugin
The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +21 Modules – All in One Solution plugin for WordPress is vulnerable to Email Relay Abuse in all versions up to, and including, 3.3.2. This is due to the lack of validation on the 'send_to', 'product_title', 'wlmessage', and 'wlemail' parameters in the 'woolentor_suggest_price_action' AJAX endpoint. This makes it possible for unauthenticated attackers to send arbitrary emails to any recipient with full control over the subject line, message content, and sender address (via CRLF injection in the 'wlemail' parameter), effectively turning the…
PLUGIN
All In One Solution
CVE-2026-1714
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1296 - Frontend Post Submission Manager Lite Plugin
The Frontend Post Submission Manager Lite plugin for WordPress is vulnerable to Open Redirection in all versions up to, and including, 1.2.7 due to insufficient validation on the 'requested_page' POST parameter in the verify_username_password function. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action such as clicking on a link.
PLUGIN
Frontend Post Submission Manager Lite
CVE-2026-1296
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1277 - Url Shortify Plugin
The URL Shortify plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 1.12.1 due to insufficient validation on the 'redirect_to' parameter in the promotional dismissal handler. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites via a crafted link.
PLUGIN
Url Shortify
CVE-2026-1277
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-6460 - Display During Conditional Shortcode Plugin
The Display During Conditional Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘message’ parameter in all versions up to, and including, 1.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Display During Conditional Shortcode
CVE-2025-6460
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-13959 - Filepicker Media Uploader Plugin
The Filestack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'filepicker' shortcode in all versions up to, and including, 2.0.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Filepicker Media Uploader
CVE-2025-13959
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-12075 - Order Splitter For Woocommerce Plugin
The Order Splitter for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'wos_troubleshooting' AJAX endpoint in all versions up to, and including, 5.3.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view information pertaining to other user's orders.
PLUGIN
Order Splitter For Woocommerce
CVE-2025-12075
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-12074 - Context Blog Theme
The Context Blog theme for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.5 via the 'context_blog_modal_popup' due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from password protected, private, or draft posts that they should not have access to.
THEME
Context Blog
CVE-2025-12074
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-12071 - Frontend User Notes Plugin
The Frontend User Notes plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.1.0 via the 'funp_ajax_modify_notes' AJAX endpoint due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify arbitrary notes that do not belong to them.
PLUGIN
Frontend User Notes
CVE-2025-12071
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-12037 - Wp 404 Auto Redirect To Similar Post Plugin
The WP 404 Auto Redirect to Similar Post plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
PLUGIN
Wp 404 Auto Redirect To Similar Post
CVE-2025-12037
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-2608 - Kadence Blocks — Page Builder Toolkit for Gutenberg Editor Plugin
The Kadence Blocks — Page Builder Toolkit for Gutenberg Editor plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 3.5.32. This makes it possible for authenticated attackers, with Contributor-level access and above, to perform an unauthorized action.
PLUGIN
Kadence Blocks — Page Builder Toolkit for Gutenberg Editor
CVE-2026-2608
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1216 - RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging Plugin
The RSS Aggregator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'template' parameter in all versions up to, and including, 5.0.10 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
PLUGIN
RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging
CVE-2026-1216
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-0829 - Frontend File Manager Plugin
The Frontend File Manager Plugin WordPress plugin through 23.5 allows unauthenticated users to send emails through the site without any security checks. This lets attackers use the WordPress site as an open relay for spam or phishing emails to anyone. Attackers can also guess file IDs to access and share uploaded files without permission, exposing sensitive information.
PLUGIN
Frontend File Manager Plugin
CVE-2026-0829
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1657 - Eventprime Event Calendar Management Plugin
The EventPrime plugin for WordPress is vulnerable to unauthorized image file upload in all versions up to, and including, 4.2.8.4. This is due to the plugin registering the upload_file_media AJAX action as publicly accessible (nopriv-enabled) without implementing any authentication, authorization, or nonce verification despite a nonce being created. This makes it possible for unauthenticated attackers to upload image files to the WordPress uploads directory and create Media Library attachments via the ep_upload_file_media endpoint.
PLUGIN
Eventprime Event Calendar Management
CVE-2026-1657
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-2592 - Zarinpal Gateway For Woocommerce Plugin
The Zarinpal Gateway for WooCommerce plugin for WordPress is vulnerable to Improper Access Control to Payment Status Update in all versions up to and including 5.0.16. This is due to the payment callback handler 'Return_from_ZarinPal_Gateway' failing to validate that the authority token provided in the callback URL belongs to the specific order being marked as paid. This makes it possible for unauthenticated attackers to potentially mark orders as paid without proper payment by reusing a valid authority token from a different transaction of the same amount.
PLUGIN
Zarinpal Gateway For Woocommerce
CVE-2026-2592
Risk Score