by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors CVE-2025-68072 affects the Easy Property Listings WordPress plugin (slug: easy-property-listings) in versions up to and including 3.5.20. With a Medium severity rating (CVSS 5.3), the primary concern is that an attacker can act without logging in....
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors NextMove Lite – Thank You Page for WooCommerce (slug: woo-thank-you-page-nextmove-lite) versions 2.23.0 and below contain a Medium severity issue (CVSS 5.3) that can be exploited over the network with no login required and no user interaction required...
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors CVE-2026-24619 affects the PopCash.Net Code Integration Tool (WordPress plugin) in versions up to and including 1.8. The issue is rated Medium severity (CVSS 5.3). Because the CVSS vector indicates no privileges required and no user interaction...
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors CVE-2025-62108 affects the WordPress plugin Add Custom Codes – Insert Header, Footer, Custom PHP Snippets, CSS, Javascript (slug: add-custom-codes) in versions up to and including 4.80. This is a Medium-severity issue (CVSS 4.3, vector:...
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors Page Builder Gutenberg Blocks – CoBlocks (WordPress plugin slug: coblocks) is affected by a Medium-severity vulnerability (CVSS 6.4) tracked as CVE-2026-27094. The issue is a Stored Cross-Site Scripting (XSS) vulnerability impacting versions up to and...
Recent Comments