by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors CVE-2025-62129 is a Medium-severity vulnerability (CVSS 5.3, vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N) affecting RestroPress – Online Food Ordering System for WordPress in versions up to and including 3.2.7. Because the weakness is reachable...
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors CVE-2025-62756 is a medium-severity Stored Cross-Site Scripting (XSS) issue affecting the The Moneytizer WordPress plugin (slug: the-moneytizer) in versions up to and including 10.0.9. An attacker must be authenticated with Contributor-level access or...
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors CVE-2025-69052 is a Medium-severity (CVSS 5.3) missing-authorization issue affecting the WordPress plugin Registration & Login with Mobile Phone Number for WooCommerce (slug: registration-login-with-mobile-phone-number) in versions up to and...
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors CVE-2026-27368 affects the WordPress plugin Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode (slug: coming-soon) in versions up to and including 6.19.8. The issue is rated Medium severity (CVSS 5.3)....
by Ivan Sorkin | Mar 18, 2026 | Plugins
Attack Vectors Add Custom Codes – Insert Header, Footer, Custom PHP Snippets, CSS, Javascript (slug: add-custom-codes) versions 4.80 and below contain a medium-severity Cross-Site Request Forgery (CSRF) issue tracked as CVE-2025-62739 (CVSS 4.3). This attack does not...
Recent Comments