Gravity Forms Vulnerability (Medium) – CVE-2026-3492

by | Mar 11, 2026 | Plugins

Attack Vectors CVE-2026-3492 affects the Gravity Forms plugin (gravityforms) in versions up to and including 2.9.28.1 and is rated Medium severity (CVSS 6.4). The issue is an authenticated (Subscriber+) stored cross-site scripting (XSS) vulnerability triggered through...

WordPress Vulnerability (Medium) –

by | Mar 11, 2026 | Core

Attack Vectors This Medium-severity vulnerability (CVSS 4.4) affects WordPress (slug: wordpress) versions up to and including 6.9.1, and involves Stored Cross-Site Scripting (XSS) through navigation menu items configured in the admin interface. To exploit it, an...