by Ivan Sorkin | Feb 26, 2026 | Plugins
Attack Vectors CVE-2025-32288 is a Critical vulnerability (CVSS 9.8) affecting the RT-Theme 18 | Extensions WordPress plugin (slug: rt18-extensions) used with the RT-Theme 18 Responsive WordPress Theme, in versions 2.4 and earlier. Because the issue is...
by Ivan Sorkin | Feb 26, 2026 | Plugins
Attack Vectors LearnPress – Backup & Migration Tool (plugin slug: learnpress-import-export) is affected by a Medium-severity Reflected Cross-Site Scripting (XSS) vulnerability (CVE-2025-49992, CVSS 6.1). In practical terms, an attacker can craft a malicious link...
by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors CVE-2025-24779 is a High-severity vulnerability (CVSS 8.8, CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) affecting the Yogi – Health Beauty & Yoga WordPress Theme (slug: yogi) in versions prior to 2.9.3. The issue is exploitable by an...
by Ivan Sorkin | Feb 26, 2026 | Themes
Attack Vectors Red Art | Artist Portfolio (WordPress theme slug: redart) is affected by CVE-2025-52828, a High severity issue (CVSS 8.8, vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). The vulnerability is exploitable by an authenticated user with...
by Ivan Sorkin | Feb 26, 2026 | Plugins
Attack Vectors CVE-2025-60224 is a High-severity vulnerability (CVSS 8.1, vector CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H) affecting the Subscribe to Download WordPress plugin (slug: subscribe-to-download) in versions up to and including 2.0.9. The issue can be...
Recent Comments