Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2026-02-18
CVE-2025-13681 - Bfg Tools Extension Zipper Plugin
The BFG Tools – Extension Zipper plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.0.7. This is due to insufficient input validation on the user-supplied `first_file` parameter in the `zip()` function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of arbitrary files and directories outside the intended `/wp-content/plugins/` directory, which can contain sensitive information such as wp-config.php.
PLUGIN
Bfg Tools Extension Zipper
CVE-2025-13681
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1844 - PixelYourSite Pro – Your smart PIXEL (TAG) Manager Plugin
The PixelYourSite PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pysTrafficSource' parameter and the 'pys_landing_page' parameter in all versions up to, and including, 12.4.0.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
PixelYourSite Pro – Your smart PIXEL (TAG) Manager
CVE-2026-1844
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1841 - PixelYourSite – Your smart PIXEL (TAG) & API Manager Plugin
The PixelYourSite – Your smart PIXEL (TAG) & API Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pysTrafficSource' parameter and the 'pys_landing_page' parameter in all versions up to, and including, 11.2.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. CVE-2026-27072 is likely a duplicate of this issue.
PLUGIN
PixelYourSite – Your smart PIXEL (TAG) & API Manager
CVE-2026-1841
Risk Score
Threat Entry
Updated 2026-02-18
CVE-2025-15157 - Starfish Reviews Plugin
The Starfish Review Generation & Marketing for WordPress plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'srm_restore_options_defaults' function in all versions up to, and including, 3.1.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.
PLUGIN
Starfish Reviews
CVE-2025-15157
Risk Score
Threat Entry
Updated 2026-02-13
CVE-2025-15520 - Before 6 Plugin
The RegistrationMagic WordPress plugin before 6.0.7.2 checks nonces but not capabilities, allowing for the disclosure of some sensitive data to subscribers and above.
PLUGIN
Before 6
CVE-2025-15520
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1104 - FastDup – Fastest WordPress Migration & Duplicator Plugin
The FastDup – Fastest WordPress Migration & Duplicator plugin for WordPress is vulnerable to unauthorized backup creation and download due to a missing capability check on REST API endpoints in all versions up to, and including, 2.7.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to create and download full-site backup archives containing the entire WordPress installation, including database exports and configuration files.
PLUGIN
FastDup – Fastest WordPress Migration & Duplicator
CVE-2026-1104
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1320 - Secure Copy Content Protection And Content Locking Plugin
The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'X-Forwarded-For' HTTP header in all versions up to, and including, 4.9.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Secure Copy Content Protection And Content Locking
CVE-2026-1320
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1316 - Customer Reviews For Woocommerce Plugin
The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'media[].href' parameter in all versions up to, and including, 5.97.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers (if 'Enable for Guests' is enabled) to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Customer Reviews For Woocommerce
CVE-2026-1316
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1671 - Activity Log For Wordpress Plugin
The Activity Log for WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the winter_activity_log_action() function in all versions up to, and including, 1.2.8. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view potentially sensitive information (e.g., the password of a higher level user, such as an administrator) contained in the exposed log files.
PLUGIN
Activity Log For Wordpress
CVE-2026-1671
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1356 - Converter for Media – Optimize images | Convert WebP & AVIF Plugin
The Converter for Media – Optimize images | Convert WebP & AVIF plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 6.5.1 via the PassthruLoader::load_image_source function. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.
PLUGIN
Converter for Media – Optimize images | Convert WebP & AVIF
CVE-2026-1356
Risk Score
Threat Entry
Updated 2026-02-12
CVE-2025-14892 - Prime Listing Manager Plugin
The Prime Listing Manager WordPress plugin through 1.1 allows an attacker to gain administrative access without having any kind of account on the targeted site and perform unauthorized actions due to a hardcoded secret.
PLUGIN
Prime Listing Manager
CVE-2025-14892
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1537 - Calendar Booking Plugin For Appointments And Events
The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the load_step() function in all versions up to, and including, 5.2.6. This makes it possible for unauthenticated attackers to view booking information including customer names, email addresses, phone numbers, appointment times, and service details.
PLUGIN
Calendar Booking Plugin For Appointments And Events
CVE-2026-1537
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1729 - AdForest Plugin
The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to, and including, 6.0.12. This is due to the plugin not properly verifying a user's identity prior to authenticating them through the 'sb_login_user_with_otp_fun' function. This makes it possible for unauthenticated attackers to log in as arbitrary users, including administrators.
PLUGIN
AdForest
CVE-2026-1729
Risk Score
Threat Entry
Updated 2026-02-11
CVE-2025-13391 - WooCommerce Plugin
The Product Options and Price Calculation Formulas for WooCommerce – Uni CPO (Premium) plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'uni_cpo_remove_file' function in all versions up to, and including, 4.9.60. This makes it possible for unauthenticated attackers to delete arbitrary attachments or files stored in Dropbox if the file path is known. The vulnerability was partially patched in version 4.9.60.
PLUGIN
WooCommerce
CVE-2025-13391
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-0910 - Wpforo Forum Plugin
The wpForo Forum plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.4.13 via deserialization of untrusted input in the 'wpforo_display_array_data' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to inject a PHP Object. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain is present via an additional plugin or theme installed…
PLUGIN
Wpforo Forum
CVE-2026-0910
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-2295 - WPZOOM Addons for Elementor – Starter Templates & Widgets Plugin
The WPZOOM Addons for Elementor – Starter Templates & Widgets plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'ajax_post_grid_load_more' function in all versions up to, and including, 1.3.2. This makes it possible for unauthenticated attackers to retrieve protected (draft, future, pending) post titles and excerpts that should not be accessible to unauthenticated users.
PLUGIN
WPZOOM Addons for Elementor – Starter Templates & Widgets
CVE-2026-2295
Risk Score
Threat Entry
Updated 2026-02-11
CVE-2025-15096 - WordPress Core
The 'Videospirecore Theme Plugin' plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.0.6. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
CORE
WordPress Core
CVE-2025-15096
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1885 - Slideshow Wp Plugin
The Slideshow Wp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sswpid' attribute of the 'sswp-slide' shortcode in all versions up to, and including, 1.1. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Slideshow Wp
CVE-2026-1885
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1853 - Buddyholis Listsearch Plugin
The BuddyHolis ListSearch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'listsearch' shortcode in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Buddyholis Listsearch
CVE-2026-1853
Risk Score
Threat Entry
Updated 2026-04-15
CVE-2026-1827 - IDE Micro code-editor Plugin
The Flask Micro code-editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's codeflask shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
IDE Micro code-editor
CVE-2026-1827
Risk Score