by Ivan Sorkin | Feb 25, 2026 | Plugins
Attack Vectors Gallery Images Ape (slug: gallery-images-ape) versions <= 2.2.8 are affected by a Medium severity vulnerability (CVSS 6.4, CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N) tracked as CVE-2022-41785. This issue is an authenticated Stored Cross-Site...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors Blix (slug: blix) theme families Blix <= 0.9.1, Blixed <= 1.0, and BlixKrieg <= 2.2 are affected by a Medium-severity Reflected Cross-Site Scripting (XSS) issue (CVSS 6.1, CVE-2007-4014: https://www.cve.org/CVERecord?id=CVE-2007-4014). The...
by Ivan Sorkin | Feb 25, 2026 | Themes
Attack Vectors CVE-2025-32285 is a medium-severity reflected cross-site scripting (XSS) issue (CVSS 6.1; CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N) affecting the Butcher – Meat Shop WooCommerce WordPress Theme (slug: butcher) in versions before 2.54. Because...
by Ivan Sorkin | Feb 25, 2026 | Plugins
Attack Vectors Simple Business Directory Pro (slug: simple-business-directory-pro) is affected by a Critical vulnerability (CVSS 9.8; CVE-2025-31918) that can be exploited remotely over the internet. The most concerning aspect for business owners is that the reported...
by Ivan Sorkin | Feb 25, 2026 | Plugins
Medium-severity vulnerability CVE-2025-54005 affects the SKT Page Builder WordPress plugin (slug: skt-builder) in versions 4.9 and below. With a CVSS score of 4.3 (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N), it can allow an authenticated user (subscriber level or...
Recent Comments