by Ivan Sorkin | Feb 11, 2026 | Plugins
Attack Vectors The WordPress plugin Gutenberg Blocks with AI by Kadence WP – Page Builder Features (also known as Kadence Blocks — Page Builder Toolkit for Gutenberg Editor, slug: kadence-blocks) has a Medium severity vulnerability (CVSS 4.3, CVE referenced in the...
by Ivan Sorkin | Feb 11, 2026 | Plugins
Attack Vectors wpForo Forum (slug: wpforo) has a High-severity vulnerability (CVSS 8.8, CVE-2026-0910) affecting versions 2.4.13 and earlier. The issue can be exploited by an authenticated user with Subscriber-level access or higher, meaning the attacker does not need...
by Ivan Sorkin | Feb 11, 2026 | Plugins
Attack Vectors CVE-2025-15096 is a High-severity (CVSS 8.8) vulnerability in the Videospirecore Theme Plugin (slug: videospirecore) affecting versions up to and including 1.0.6. It can be exploited remotely over the internet by an authenticated user with...
by Ivan Sorkin | Feb 11, 2026 | Plugins
Attack Vectors CVE-2026-2295 affects the WordPress plugin WPZOOM Addons for Elementor – Starter Templates & Widgets (slug: wpzoom-elementor-addons) in versions up to and including 1.3.2, with a Medium severity rating (CVSS 5.3). The issue involves an AJAX endpoint...
by Ivan Sorkin | Feb 10, 2026 | Plugins
Attack Vectors CVE-2025-68007 affects the WordPress plugin Event Espresso – Event Registration & Ticketing Sales (slug: event-espresso-decaf) in Event Espresso 4 Decaf versions up to and including 5.0.37.decaf. The issue is rated Medium severity (CVSS 6.5). The...
Recent Comments