Ivan Sorkin | WPFore

Sweet Date Vulnerability (High) – CVE-2026-27417

by Ivan Sorkin | Mar 5, 2026 | Themes

Attack Vectors CVE-2026-27417 affects the Sweet Date WordPress theme (slug: sweetdate) in versions up to 4.0.1. The issue is an unauthenticated PHP object injection risk caused by deserialization of untrusted input, meaning an external attacker could potentially...

Really Simple Security Pro Vulnerability (Medium) – CVE-2026-27397

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors CVE-2026-27397 affects the WordPress plugin Really Simple Security Pro (slug: really-simple-ssl-pro) in versions up to and including 9.5.4.0. The issue is an Insecure Direct Object Reference (IDOR) that can be exploited by an authenticated user with...

Classified Listing – AI-Powered Classified ads & Business Directory…

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors CVE-2026-23546 is a Medium-severity issue (CVSS 4.3) affecting the WordPress plugin Classified Listing – AI-Powered Classified ads & Business Directory Plugin (slug: classified-listing) in versions 5.3.4 and below. The key risk is that an attacker...

WeDesignTech Ultimate Booking Addon Vulnerability (High) – CVE-2026…

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors The WeDesignTech Ultimate Booking Addon (slug: wedesigntech-ultimate-booking-addon) vulnerability (CVE-2026-27390) is an authenticated (Subscriber+) authentication bypass affecting versions up to and including 1.0.1. That means an attacker first needs...

WeDesignTech Ultimate Booking Addon Vulnerability (Critical) – CVE-…

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors WeDesignTech Ultimate Booking Addon (slug: wedesigntech-ultimate-booking-addon) has a Critical authentication bypass vulnerability (CVE-2026-27389, CVSS 9.8). In affected versions (all versions up to and including 1.0.1), an attacker can attempt access...

« Older Entries

Next Entries »

Sweet Date Vulnerability (High) – CVE-2026-27417

Really Simple Security Pro Vulnerability (Medium) – CVE-2026-27397

Classified Listing – AI-Powered Classified ads & Business Directory…

WeDesignTech Ultimate Booking Addon Vulnerability (High) – CVE-2026…

WeDesignTech Ultimate Booking Addon Vulnerability (Critical) – CVE-…

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!