by Ivan Sorkin | Apr 14, 2026 | Plugins
Medium-severity vulnerability CVE-2026-27071 (CVSS 5.3) affects the WPCafe – Restaurant Menu, Online Food Ordering & Table Booking System WordPress plugin (wp-cafe) in versions up to and including 3.0.7. It is described as a “missing authorization” issue that can...
by Ivan Sorkin | Apr 14, 2026 | Plugins
Attack Vectors CVE-2025-68600 is a Medium-severity Server-Side Request Forgery (SSRF) vulnerability (CVSS 6.4, vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N) affecting the Link Library WordPress plugin (link-library) in versions up to and including 7.8.7. The...
by Ivan Sorkin | Apr 14, 2026 | Plugins
Attack Vectors CVE-2025-64250 is a Medium-severity (CVSS 5.8) Open Redirect affecting the WordPress plugin Directorist: AI-Powered Business Directory, Listings & Classified Ads (slug: directorist) in versions up to and including 8.6.6. An unauthenticated attacker...
by Ivan Sorkin | Apr 14, 2026 | Plugins
Attack Vectors CVE-2025-68069 is a Medium-severity missing authorization issue affecting the Directorist: AI-Powered Business Directory, Listings & Classified Ads plugin (slug: directorist) in versions up to and including 8.6.6. Because the problem involves a...
by Ivan Sorkin | Apr 14, 2026 | Uncategorized
Attack Vectors CVE-2025-68069 is a Medium-severity missing authorization issue affecting the Directorist: AI-Powered Business Directory, Listings & Classified Ads plugin (slug: directorist) in versions up to and including 8.6.6. Because the problem involves a...
Recent Comments