by Ivan Sorkin | Feb 25, 2026 | Plugins
Attack Vectors CVE-2026-22384 affects the Applay – Shortcodes WordPress plugin (slug: applay-shortcodes) in versions up to and including 3.7. It is rated High severity with a CVSS 7.5 score (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H). The most likely entry...
by Ivan Sorkin | Feb 25, 2026 | Plugins
Attack Vectors CVE-2025-69337 is a High-severity (CVSS 7.5) vulnerability affecting the Wolmart Core WordPress plugin (wolmart-core) in versions up to and including 1.9.6. The issue is an unauthenticated SQL Injection, meaning an attacker can target the site over the...
by Ivan Sorkin | Feb 25, 2026 | Plugins
Attack Vectors The vulnerability (CVE-2026-3075) affects the WordPress plugin Simple Ajax Chat – Add a Fast, Secure Chat Box (slug: simple-ajax-chat) and is rated Medium severity (CVSS 5.3; vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N). Because it is...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors Grand Restaurant (WordPress theme slug: grandrestaurant) has a High-severity vulnerability (CVE-2026-23542, CVSS 8.1) affecting versions up to and including 7.0.10. The issue can be triggered without authentication, meaning an external attacker can...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors Valenti (WordPress theme, slug: valenti) versions <= 5.6.3.5 are affected by CVE-2026-23544, a High-severity issue (CVSS 7.5, vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H). This vulnerability can be triggered over the network by an attacker...
Recent Comments