Ivan Sorkin | WPFore

Wikilookup Vulnerability (Medium) – CVE-2026-3354

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors CVE-2026-3354 is a Medium-severity stored cross-site scripting (XSS) issue (CVSS 4.4) affecting the Wikilookup WordPress plugin (versions <= 1.1.5). The vulnerable entry point is the plugin’s “Popup Width” setting. This is an authenticated...

Canto Vulnerability (Medium) – CVE-2026-3335

by Ivan Sorkin | Mar 20, 2026 | Plugins

CVE-2026-3335 is a Medium-severity vulnerability (CVSS 5.3) affecting the Canto WordPress plugin in versions up to and including 3.1.1. The issue allows unauthenticated file upload due to missing authorization controls in a directly accessible plugin file. Details are...

Any Post Slider Vulnerability (Medium) – CVE-2026-1899

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors CVE-2026-1899 is a Medium-severity vulnerability (CVSS 6.4) affecting the Any Post Slider WordPress plugin (slug: any-post-slider) in versions 1.0.4 and earlier. It enables an authenticated attacker with Contributor-level access (or higher) to plant a...

Multi Functional Flexi Lightbox Vulnerability (Medium) – CVE-2026-3347

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors Multi Functional Flexi Lightbox (slug: multi-functional-flexi-lightbox) versions up to and including 1.2 are affected by a Medium-severity stored cross-site scripting (XSS) issue (CVSS 5.5; CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N) tracked as...

Xhanch – My Advanced Settings Vulnerability (Medium) – CVE-2026-3332

by Ivan Sorkin | Mar 20, 2026 | Plugins

Attack Vectors CVE-2026-3332 is a Medium-severity (CVSS 4.3) Cross-Site Request Forgery (CSRF) issue affecting the WordPress plugin Xhanch – My Advanced Settings (xhanch-my-advanced-settings) in all versions up to and including 1.1.2. An attacker does not need an...

« Older Entries

Next Entries »

Wikilookup Vulnerability (Medium) – CVE-2026-3354

Canto Vulnerability (Medium) – CVE-2026-3335

Any Post Slider Vulnerability (Medium) – CVE-2026-1899

Multi Functional Flexi Lightbox Vulnerability (Medium) – CVE-2026-3347

Xhanch – My Advanced Settings Vulnerability (Medium) – CVE-2026-3332

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!