Ivan Sorkin | WPFore

Pretty Url Vulnerability (Medium) – CVE-2023-2009

by Ivan Sorkin | Mar 18, 2026 | Plugins

Attack Vectors CVE-2023-2009 is a Medium-severity (CVSS 4.4) stored cross-site scripting (XSS) issue in the Pretty Url WordPress plugin (slug: pretty-url) affecting versions prior to 1.5.5. An attacker must already be authenticated with administrator-level permissions...

PayU CommercePro Plugin Vulnerability (Medium) – CVE-2024-27193

by Ivan Sorkin | Mar 18, 2026 | Plugins

Attack Vectors The PayU India (PayU CommercePro) WordPress plugin (slug: payu-india) has a Medium-severity vulnerability (CVSS 6.1) identified as CVE-2024-27193 (CVE record). It is a Reflected Cross-Site Scripting (XSS) issue triggered through the type parameter in...

Change Table Prefix Vulnerability (High) – CVE-2024-25932

by Ivan Sorkin | Mar 18, 2026 | Plugins

Attack Vectors Change Table Prefix (slug: change-table-prefix) is affected by a High-severity Cross-Site Request Forgery (CSRF) vulnerability (CVSS 7.1; CVE-2024-25932) in versions up to and including 2.0. The primary attack path is social engineering: an attacker can...

Yoast Duplicate Post Vulnerability (Medium) – CVE-2026-1217

by Ivan Sorkin | Mar 17, 2026 | Plugins

Attack Vectors CVE-2026-1217 affects the WordPress plugin Yoast Duplicate Post (slug: duplicate-post) in versions up to and including 4.5. The severity is Medium (CVSS 5.4; vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N). This issue can be exploited by an...

Writeprint Stylometry Vulnerability (Medium) – CVE-2026-3512

by Ivan Sorkin | Mar 17, 2026 | Plugins

Attack Vectors Writeprint Stylometry (slug: writeprint-stylometry) versions 0.1 and earlier are affected by a Medium-severity reflected cross-site scripting (XSS) issue tracked as CVE-2026-3512 (CVSS 6.1, vector CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N). The...

« Older Entries

Next Entries »

Pretty Url Vulnerability (Medium) – CVE-2023-2009

PayU CommercePro Plugin Vulnerability (Medium) – CVE-2024-27193

Change Table Prefix Vulnerability (High) – CVE-2024-25932

Yoast Duplicate Post Vulnerability (Medium) – CVE-2026-1217

Writeprint Stylometry Vulnerability (Medium) – CVE-2026-3512

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!