Ivan Sorkin | WPFore

Activity Log for WordPress Vulnerability (Medium) – CVE-2026-1671

by Ivan Sorkin | Feb 12, 2026 | Plugins

Attack Vectors Activity Log for WordPress (slug: winterlock) versions 1.2.8 and earlier have a Medium-severity vulnerability (CVE-2026-1671, CVSS 6.5) that can be abused by an attacker who already has a basic, legitimate login (for example, a Subscriber account)....

Converter for Media – Optimize images | Convert WebP & AVIF Vulnera…

by Ivan Sorkin | Feb 12, 2026 | Plugins

Attack Vectors The WordPress plugin Converter for Media – Optimize images | Convert WebP & AVIF (slug: webp-converter-for-media) is affected by a Medium-severity Server-Side Request Forgery (SSRF) vulnerability (CVE-2026-1356) in versions up to and including...

Fioxen – Directory Listing WordPress Theme Vulnerability (Medium) -…

by Ivan Sorkin | Feb 11, 2026 | Themes

Attack Vectors CVE-2024-43334 affects multiple WordPress themes by gavias, including the Fioxen – Directory Listing WordPress Theme (slug: fioxen). This is a Medium severity issue (CVSS 6.1) involving reflected cross-site scripting (XSS), which typically relies...

Welowe – Nonprofit Charity WordPress Theme Vulnerability (Medium) -…

by Ivan Sorkin | Feb 11, 2026 | Themes

Attack Vectors The Welowe – Nonprofit Charity WordPress Theme (slug: welowe) is affected by a Medium-severity vulnerability (CVE-2024-43334, CVSS 6.1) involving Reflected Cross-Site Scripting (XSS). In practical terms, an attacker may try to deliver a specially...

Welowe – Nonprofit Charity WordPress Theme Vulnerability (Medium) -…

by Ivan Sorkin | Feb 11, 2026 | Themes

Attack Vectors CVE-2024-43334 is a Medium-severity Reflected Cross-Site Scripting (XSS) vulnerability (CVSS 6.1) affecting the Welowe – Nonprofit Charity WordPress Theme (slug: welowe) and other “gavias” WordPress themes across various versions. The most common attack...

« Older Entries

Next Entries »

Activity Log for WordPress Vulnerability (Medium) – CVE-2026-1671

Converter for Media – Optimize images | Convert WebP & AVIF Vulnera…

Fioxen – Directory Listing WordPress Theme Vulnerability (Medium) -…

Welowe – Nonprofit Charity WordPress Theme Vulnerability (Medium) -…

Welowe – Nonprofit Charity WordPress Theme Vulnerability (Medium) -…

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!