Archives

AWP Classifieds Vulnerability (Medium) – CVE-2026-24593

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2026-24593 affects the AWP Classifieds WordPress plugin (slug: another-wordpress-classifieds-plugin) in versions 4.4.3 and earlier. Because this is an unauthenticated information exposure issue, an attacker does not need a login to attempt to access...

Addonify – WooCommerce Wishlist Vulnerability (Medium) – CVE-2025-6…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors Addonify – WooCommerce Wishlist (slug: addonify-wishlist) has a Medium-severity vulnerability (CVSS 5.3) that can be exploited over the network with no login required (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N). Because the issue is exploitable by...

Tutor LMS Elementor Addons Vulnerability (Medium) – CVE-2025-63042

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-63042 is a Medium-severity Stored Cross-Site Scripting (XSS) vulnerability affecting Tutor LMS Elementor Addons for WordPress (plugin slug: tutor-lms-elementor-addons) in versions up to and including 3.0.1. The key exposure is that an attacker...

Writesonic Vulnerability (Medium) – CVE-2025-53262

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-53262 is a Medium-severity Cross-Site Request Forgery (CSRF) issue affecting the Writesonic WordPress plugin (slug: writesonic) in versions 1.0.5 and below. The CVSS score is 4.3 (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N). In practical...

WP Inventory Manager Vulnerability (Medium) – CVE-2025-49977

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-49977 is a Medium-severity Cross-Site Request Forgery (CSRF) issue affecting the WP Inventory Manager plugin (wp-inventory-manager) in versions up to and including 2.3.4. CSRF attacks don’t rely on breaking passwords; instead, they rely on...

« Older Entries

Next Entries »

AWP Classifieds Vulnerability (Medium) – CVE-2026-24593

Addonify – WooCommerce Wishlist Vulnerability (Medium) – CVE-2025-6…

Tutor LMS Elementor Addons Vulnerability (Medium) – CVE-2025-63042

Writesonic Vulnerability (Medium) – CVE-2025-53262

WP Inventory Manager Vulnerability (Medium) – CVE-2025-49977

Recent Posts

Recent Comments

Categories

Meta

Location

Follow Us

Subscription

Success!