by Ivan Sorkin | Mar 26, 2026 | Plugins
Attack Vectors Smart Slider 3 (WordPress plugin slug: smart-slider-3) is affected by CVE-2026-3098, a Medium-severity vulnerability (CVSS 6.5) that can be exploited by an authenticated user with Subscriber-level access or higher. This matters for business sites...
by Ivan Sorkin | Mar 26, 2026 | Plugins
Attack Vectors CVE-2026-2511 is a High-severity (CVSS 7.5) vulnerability affecting the WordPress plugin JS Help Desk – AI-Powered Support & Ticketing System (slug: js-support-ticket) in versions 3.0.4 and earlier. It can be exploited remotely over the internet and...
by Ivan Sorkin | Mar 25, 2026 | Plugins
Attack Vectors Elementor Website Builder – More Than Just a Page Builder (slug: elementor) has a Medium-severity vulnerability (CVSS 4.3, vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N) tracked as CVE-2026-1206. The attack requires an attacker to be...
by Ivan Sorkin | Mar 25, 2026 | Plugins
Attack Vectors CVE-2026-4389 is a Medium-severity stored cross-site scripting (XSS) vulnerability (CVSS 6.4) in the WordPress plugin DSGVO snippet for Leaflet Map and its Extensions (slug: dsgvo-leaflet-map) affecting versions up to and including 3.1. An attacker must...
by Ivan Sorkin | Mar 25, 2026 | Plugins
Attack Vectors CVE-2026-2931 is a High-severity vulnerability (CVSS 8.8) affecting the Booking for Appointments and Events Calendar – Amelia plugin (slug: ameliabooking) in versions up to and including 9.1.2. It impacts the pro plugin (which uses the same slug). The...
Recent Comments