Ivan Sorkin | WPFore

MetForm Pro Vulnerability (Medium) – CVE-2026-1782

by Ivan Sorkin | Apr 14, 2026 | Plugins

Attack Vectors MetForm Pro (slug: metform-pro) versions 3.9.7 and earlier are affected by CVE-2026-1782 (severity: Medium, CVSS 5.3). The issue can be exploited by an unauthenticated attacker (no login required) when your site uses a MetForm Pro form configured with...

Visa Acceptance Solutions Vulnerability (Critical) – CVE-2026-3461

by Ivan Sorkin | Apr 14, 2026 | Plugins

Attack Vectors Visa Acceptance Solutions for WordPress (versions <= 2.1.0) has a Critical authentication bypass vulnerability tracked as CVE-2026-3461 (CVSS 9.8; CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Because it is exploitable over the network with no login...

Accessibly – WordPress Website Accessibility Vulnerability (High) -…

by Ivan Sorkin | Apr 14, 2026 | Plugins

Attack Vectors Accessibly – WordPress Website Accessibility (slug: otm-accessibly) is affected by a High-severity issue that enables unauthenticated Stored Cross-Site Scripting (XSS) in versions <= 3.0.3 (CVE: CVE-2026-3643, CVSS 7.2). An external attacker can...

Petje.af Vulnerability (Medium) – CVE-2026-4002

by Ivan Sorkin | Apr 14, 2026 | Plugins

Attack Vectors The Petje.af WordPress plugin (slug: petje-af) is affected by a Medium-severity Cross-Site Request Forgery (CSRF) vulnerability (CVE-2026-4002, CVSS 4.3: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N) in versions up to and including 2.1.8. Because CSRF...

Coachific Shortcode Vulnerability (Medium) – CVE-2026-4005

by Ivan Sorkin | Apr 14, 2026 | Plugins

Attack Vectors CVE-2026-4005 is a Medium-severity Stored Cross-Site Scripting (XSS) vulnerability (CVSS 6.4) affecting the Coachific Shortcode WordPress plugin (slug: coachific-shortcode) in all versions up to and including 1.0. The attack requires an authenticated...

« Older Entries

Next Entries »

MetForm Pro Vulnerability (Medium) – CVE-2026-1782

Visa Acceptance Solutions Vulnerability (Critical) – CVE-2026-3461

Accessibly – WordPress Website Accessibility Vulnerability (High) -…

Petje.af Vulnerability (Medium) – CVE-2026-4002

Coachific Shortcode Vulnerability (Medium) – CVE-2026-4005

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!