Ivan Sorkin | WPFore

Flexmls® IDX Plugin Vulnerability (Medium) – CVE-2026-25369

by Ivan Sorkin | Mar 19, 2026 | Plugins

Attack Vectors The Flexmls® IDX Plugin (slug: flexmls-idx) is affected by a Medium-severity reflected cross-site scripting (XSS) vulnerability (CVE-2026-25369, CVSS 6.1) in versions up to and including 3.15.9. Reflected XSS typically occurs when a crafted web request...

Master Addons For Elementor – Widgets, Extensions, Theme Builder, P…

by Ivan Sorkin | Mar 19, 2026 | Plugins

Attack Vectors Product: Master Addons For Elementor – Widgets, Extensions, Theme Builder, Popup Builder & Template Kits (slug: master-addons) Severity: Medium (CVSS 6.4) — CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N This issue (CVE-2026-32462) is an...

CP Multi View Events Calendar Vulnerability (Medium) – CVE-2026-25465

by Ivan Sorkin | Mar 19, 2026 | Plugins

Attack Vectors CP Multi View Events Calendar (slug: cp-multi-view-calendar) versions up to and including 1.4.34 are affected by a Medium-severity Stored Cross-Site Scripting (XSS) vulnerability (CVE-2026-25465, CVSS 6.4; vector:...

Listeo-Core – Directory Plugin by Purethemes Vulnerability (Medium)…

by Ivan Sorkin | Mar 19, 2026 | Plugins

Attack Vectors Listeo-Core – Directory Plugin by Purethemes (slug: listeo-core) is affected by a Medium-severity Reflected Cross-Site Scripting (XSS) vulnerability (CVE-2026-25461, CVSS 6.1, vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N) in versions up to...

Product Slider, Product Grid, Product Masonry Vulnerability (Medium…

by Ivan Sorkin | Mar 19, 2026 | Plugins

Attack Vectors CVE-2026-25455 is a medium-severity authorization issue (CVSS 4.3) affecting the WordPress plugin Product Slider, Product Grid, Product Masonry (slug: woocommerce-products-slider) in versions up to and including 1.13.60. The risk is primarily from...

« Older Entries

Next Entries »

Flexmls® IDX Plugin Vulnerability (Medium) – CVE-2026-25369

Master Addons For Elementor – Widgets, Extensions, Theme Builder, P…

CP Multi View Events Calendar Vulnerability (Medium) – CVE-2026-25465

Listeo-Core – Directory Plugin by Purethemes Vulnerability (Medium)…

Product Slider, Product Grid, Product Masonry Vulnerability (Medium…

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!