Plugins | WPFore

Eventin – Events Calendar, Event Booking, Ticket & Registration (AI…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-68047 is a High-severity vulnerability (CVSS 7.5) affecting Eventin – Events Calendar, Event Booking, Ticket & Registration (AI Powered) (WordPress plugin slug: wp-event-solution) in versions up to and including 4.1.3. This issue is...

Attesa Extra Vulnerability (Medium) – CVE-2025-62971

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors Attesa Extra (slug: attesa-extra) has a Medium severity vulnerability (CVSS 6.4, CVE-2025-62971) affecting versions up to and including 1.4.7. It is an authenticated Stored Cross-Site Scripting (XSS) issue, meaning an attacker must be logged into...

Premmerce Wholesale Pricing for WooCommerce Vulnerability (Medium) …

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors Premmerce Wholesale Pricing for WooCommerce (slug: premmerce-woocommerce-wholesale-pricing) versions 1.1.10 and earlier contain a Medium-severity missing-authorization issue (CVE-2025-64285, CVSS 4.3). The key risk is that an authenticated WordPress...

Premmerce User Roles Vulnerability (Medium) – CVE-2025-64291

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2025-64291 is a Medium-severity Stored Cross-Site Scripting (XSS) issue in the Premmerce User Roles WordPress plugin (slug: premmerce-user-roles) affecting versions up to and including 1.0.13 (CVSS 3.1: 4.4, vector:...

TP2WP Importer Vulnerability (Medium) – CVE-2026-2489

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors TP2WP Importer (slug: tp2wp-importer) versions 1.1 and below contain a medium-severity Stored Cross-Site Scripting (XSS) issue tracked as CVE-2026-2489 (CVSS 4.4). The attack requires an authenticated user with Administrator-level access (or higher). An...

Livemesh Addons for Beaver Builder Vulnerability (Medium) – CVE-202…

by Ivan Sorkin | Feb 25, 2026 | Plugins

Attack Vectors CVE-2026-2029 is a medium-severity stored cross-site scripting (XSS) vulnerability (CVSS 6.4) affecting Livemesh Addons for Beaver Builder (WordPress plugin slug: addons-for-beaver-builder) in versions up to and including 3.9.2. An attacker needs...

« Older Entries

Next Entries »

Eventin – Events Calendar, Event Booking, Ticket & Registration (AI…

Attesa Extra Vulnerability (Medium) – CVE-2025-62971

Premmerce Wholesale Pricing for WooCommerce Vulnerability (Medium) …

Premmerce User Roles Vulnerability (Medium) – CVE-2025-64291

TP2WP Importer Vulnerability (Medium) – CVE-2026-2489

Livemesh Addons for Beaver Builder Vulnerability (Medium) – CVE-202…

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!