Archives

TP2WP Importer Vulnerability (Medium) – CVE-2026-2489

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors TP2WP Importer (slug: tp2wp-importer) versions 1.1 and below contain a medium-severity Stored Cross-Site Scripting (XSS) issue tracked as CVE-2026-2489 (CVSS 4.4). The attack requires an authenticated user with Administrator-level access (or higher). An...

WP Responsive Images Vulnerability (High) – CVE-2026-1557

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2026-1557 is a High-severity vulnerability (CVSS 7.5; CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) affecting the WP Responsive Images WordPress plugin (wp-responsive-images) in all versions up to and including 1.0. The issue is exploitable without...

Livemesh Addons for Beaver Builder Vulnerability (Medium) – CVE-202…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2026-2029 is a medium-severity stored cross-site scripting (XSS) vulnerability (CVSS 6.4) affecting Livemesh Addons for Beaver Builder (WordPress plugin slug: addons-for-beaver-builder) in versions up to and including 3.9.2. An attacker needs...

WP Social Meta Vulnerability (Medium) – CVE-2026-2498

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2026-2498 affects the WP Social Meta WordPress plugin (slug: wp-social-meta) in versions <= 1.0.1. It is a Medium severity issue (CVSS 4.4, vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N). The attack requires an authenticated user with...

Custom Logo Vulnerability (Medium) – CVE-2026-2499

by Ivan Sorkin | Feb 25, 2026 | Plugins

Medium severity advisory (CVSS 4.4): CVE-2026-2499 affects the Custom Logo WordPress plugin (custom-logo) in versions <= 2.2. The issue is a stored cross-site scripting (XSS) risk tied to the plugin’s logo path setting in the WordPress admin. According to the...

« Older Entries

Next Entries »

TP2WP Importer Vulnerability (Medium) – CVE-2026-2489

WP Responsive Images Vulnerability (High) – CVE-2026-1557

Livemesh Addons for Beaver Builder Vulnerability (Medium) – CVE-202…

WP Social Meta Vulnerability (Medium) – CVE-2026-2498

Custom Logo Vulnerability (Medium) – CVE-2026-2499

Recent Posts

Recent Comments

Categories

Meta

Location

Follow Us

Subscription

Success!