Archives

DZS Video Gallery Vulnerability (Medium) –

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors The DZS Video Gallery WordPress plugin (versions below 7.95) has a Medium-severity vulnerability (CVSS 5.3) that can be triggered remotely over the internet. Based on the published details, the issue can be exploited by an unauthenticated attacker (no...

Simple Ajax Chat – Add a Fast, Secure Chat Box Vulnerability (Mediu…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors Simple Ajax Chat – Add a Fast, Secure Chat Box (slug: simple-ajax-chat) has a Medium-severity vulnerability (CVE-2024-2956, CVSS 4.4) that can be triggered when an authenticated user with administrator-level permissions (or higher) enters malicious...

Worry Proof Backup Vulnerability (High) – CVE-2026-1311

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2026-1311 affects the Worry Proof Backup WordPress plugin (slug: worry-proof-backup) in all versions up to and including 0.2.4. It is rated High severity with a CVSS 8.8 score (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). The primary attack path...

WP Gravity Forms Keap/Infusionsoft Vulnerability (Medium) – CVE-202…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors WP Gravity Forms Keap/Infusionsoft (slug: gf-infusionsoft) is affected by an Open Redirect vulnerability in versions <= 1.2.6 (Severity: Medium, CVSS 4.3; CVE-2025-58006). The issue occurs when a redirect URL can be supplied without sufficient...

Premmerce WooCommerce Customers Manager Vulnerability (Medium) – CV…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors Premmerce WooCommerce Customers Manager (WordPress plugin slug: woo-customers-manager) is affected by a Medium-severity reflected cross-site scripting (XSS) vulnerability (CVE-2025-13369, CVSS 6.1). The attack is carried out by sending a crafted link...

« Older Entries

Next Entries »

DZS Video Gallery Vulnerability (Medium) –

Simple Ajax Chat – Add a Fast, Secure Chat Box Vulnerability (Mediu…

Worry Proof Backup Vulnerability (High) – CVE-2026-1311

WP Gravity Forms Keap/Infusionsoft Vulnerability (Medium) – CVE-202…

Premmerce WooCommerce Customers Manager Vulnerability (Medium) – CV…

Recent Posts

Recent Comments

Categories

Meta

Location

Follow Us

Subscription

Success!