Archives

Multi Functional Flexi Lightbox Vulnerability (Medium) – CVE-2026-3347

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors Multi Functional Flexi Lightbox (slug: multi-functional-flexi-lightbox) versions up to and including 1.2 are affected by a Medium-severity stored cross-site scripting (XSS) issue (CVSS 5.5; CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N) tracked as...

Xhanch – My Advanced Settings Vulnerability (Medium) – CVE-2026-3332

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors CVE-2026-3332 is a Medium-severity (CVSS 4.3) Cross-Site Request Forgery (CSRF) issue affecting the WordPress plugin Xhanch – My Advanced Settings (xhanch-my-advanced-settings) in all versions up to and including 1.1.2. An attacker does not need an...

Lobot Slider Administrator Vulnerability (Medium) – CVE-2026-3331

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors Lobot Slider Administrator (slug: lobot-slider-administrator) is affected by a Medium-severity Cross-Site Request Forgery (CSRF) issue in versions up to and including 0.6.0 (CVE-2026-3331; CVSS 4.3). The practical attack path is social: an attacker can...

Go Night Pro | WordPress Dark Mode Plugin Vulnerability (Medium) – …

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors CVE-2026-1886 affects the Go Night Pro | WordPress Dark Mode Plugin (slug: go-night-pro) in versions 1.1.0 and below. This is a Medium-severity issue (CVSS 6.4) that can be exploited by an authenticated user with Contributor-level access or higher. The...

Build App Online Vulnerability (Medium) – CVE-2026-3651

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors CVE-2026-3651 affects the WordPress plugin Build App Online (slug: build-app-online) in versions <= 1.0.23 and is rated Medium severity (CVSS 5.3). The primary attack path is remote and does not require a user account. An attacker can send requests...

« Older Entries

Next Entries »

Multi Functional Flexi Lightbox Vulnerability (Medium) – CVE-2026-3347

Xhanch – My Advanced Settings Vulnerability (Medium) – CVE-2026-3332

Lobot Slider Administrator Vulnerability (Medium) – CVE-2026-3331

Go Night Pro | WordPress Dark Mode Plugin Vulnerability (Medium) – …

Build App Online Vulnerability (Medium) – CVE-2026-3651

Recent Posts

Recent Comments

Categories

Meta

Location

Follow Us

Subscription

Success!