by Ivan Sorkin | Feb 17, 2026 | Plugins
Attack Vectors The vulnerability CVE-2026-1857 affects the WordPress plugin Kadence Blocks — Page Builder Toolkit for Gutenberg Editor (slug: kadence-blocks) in versions up to and including 3.6.1, and is rated Medium severity (CVSS 4.3). It is an authenticated issue,...
by Ivan Sorkin | Feb 17, 2026 | Plugins
Attack Vectors Taskbuilder – WordPress Project Management & Task Management (kanban view) (slug: taskbuilder) is affected by a Medium severity vulnerability (CVSS 4.3, CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N) tracked as CVE-2026-1640. The primary attack path...
by Ivan Sorkin | Feb 17, 2026 | Plugins
Attack Vectors Taskbuilder – WordPress Project Management & Task Management (slug: taskbuilder) versions up to and including 5.0.2 have a Medium severity vulnerability (CVSS 6.5) identified as CVE-2026-1639. It can be exploited by an authenticated user with...
by Ivan Sorkin | Feb 17, 2026 | Plugins
Attack Vectors CVE-2026-1906 affects the WordPress plugin PDF Invoices & Packing Slips for WooCommerce (slug: woocommerce-pdf-invoices-packing-slips) in versions 5.6.0 and earlier, and is rated Medium severity (CVSS 4.3). The issue is reachable over the network...
by Ivan Sorkin | Feb 17, 2026 | Plugins
Attack Vectors The Keybase.io Verification plugin for WordPress (slug: wp-keybase-verification) is affected by a Medium-severity Cross-Site Request Forgery (CSRF) vulnerability in versions 1.4.5 and earlier (CVE-2026-1072, CVSS 4.3). In practical terms, an attacker...
Recent Comments