Archives

Pretty Search Permalinks Vulnerability (Medium) – CVE-2025-67626

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-67626 is a Medium-severity Cross-Site Request Forgery (CSRF) issue (CVSS 4.3) affecting the Pretty Search Permalinks WordPress plugin (slug: wp-seo-search) in versions SEO Search <= 1.1. CSRF attacks rely on user interaction. In this case,...

WP-BusinessDirectory – Business directory plugin for WordPress Vuln…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-24759 is a High severity vulnerability (CVSS 7.5; CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) affecting WP-BusinessDirectory – Business directory plugin for WordPress (slug: wp-businessdirectory) up to and including version 3.1.4. The issue...

WP-BusinessDirectory – Business directory plugin for WordPress Vuln…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-24759 is a High-severity vulnerability (CVSS 7.5) affecting WP-BusinessDirectory – Business directory plugin for WordPress (slug: wp-businessdirectory) in versions up to and including 3.1.3. The issue is an unauthenticated SQL Injection,...

TalkJS Vulnerability (Medium) – CVE-2026-1055

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors This Medium-severity vulnerability (CVE-2026-1055, CVSS 4.4) affects the TalkJS WordPress plugin (slug: talkjs) in versions 0.1.15 and below. The issue can be triggered through the plugin’s admin settings by abusing the welcomeMessage parameter. The...

SEO Flow by LupsOnline Vulnerability (Medium) – CVE-2025-48146

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors SEO Flow by LupsOnline (slug: lupsonline-link-netwerk) has a Medium severity issue (CVSS 6.1, vector CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N) tracked as CVE-2025-48146. The attack relies on tricking a WordPress administrator into performing an...

« Older Entries

Next Entries »

Pretty Search Permalinks Vulnerability (Medium) – CVE-2025-67626

WP-BusinessDirectory – Business directory plugin for WordPress Vuln…

WP-BusinessDirectory – Business directory plugin for WordPress Vuln…

TalkJS Vulnerability (Medium) – CVE-2026-1055

SEO Flow by LupsOnline Vulnerability (Medium) – CVE-2025-48146

Recent Posts

Recent Comments

Categories

Meta

Location

Follow Us

Subscription

Success!