Archives

CF7 7 Mailchimp Add-on Vulnerability (Medium) – CVE-2025-29012

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-29012 affects the CF7 7 Mailchimp Add-on WordPress plugin (slug: CF7-mailchimp-addon) in all versions earlier than 2.4. Because the issue can be triggered without authentication (CVSS vector includes PR:N and UI:N), an attacker does not need a...

Page-list Vulnerability (Medium) – CVE-2025-58030

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-58030 is a Medium-severity Stored Cross-Site Scripting (XSS) vulnerability (CVSS 6.4) affecting the Page-list WordPress plugin (slug: page-list) in versions up to and including 5.8. The primary attack path requires a user who is already...

KBx Pro Ultimate Vulnerability (High) – CVE-2025-31053

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors KBx Pro Ultimate (WordPress plugin slug: knowledgebase-helpdesk-pro) has a High-severity vulnerability (CVSS 8.1, CVE-2025-31053) that can be exploited by an authenticated user with Subscriber-level access or higher. This matters because “Subscriber” is...

Icegram Express Pro Vulnerability (Medium) – CVE-2025-68038

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors Icegram Express Pro (WordPress plugin slug: email-subscribers-premium) versions <= 5.9.13 are affected by CVE-2025-68038, rated Medium severity (CVSS 6.6, vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H). The practical attack path requires an...

MapSVG Vulnerability (Medium) – CVE-2025-47558

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors MapSVG (WordPress plugin slug: mapsvg) is affected by CVE-2025-47558, a Medium-severity missing-authorization issue (CVSS 5.3). The vulnerability exists because a function lacks a required capability check in versions up to, but excluding, 8.6.13....

« Older Entries

Next Entries »

CF7 7 Mailchimp Add-on Vulnerability (Medium) – CVE-2025-29012

Page-list Vulnerability (Medium) – CVE-2025-58030

KBx Pro Ultimate Vulnerability (High) – CVE-2025-31053

Icegram Express Pro Vulnerability (Medium) – CVE-2025-68038

MapSVG Vulnerability (Medium) – CVE-2025-47558

Recent Posts

Recent Comments

Categories

Meta

Location

Follow Us

Subscription

Success!