Plugins | WPFore

Calculated Fields Form Vulnerability (Medium) – CVE-2026-25368

by Ivan Sorkin | Feb 24, 2026 | Plugins

Attack Vectors CVE-2026-25368 affects the WordPress plugin Calculated Fields Form (slug: calculated-fields-form) in versions up to and including 5.4.4.1. This is a Medium severity issue (CVSS 4.3, vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N). The primary...

WP Compress – Instant Performance & Speed Optimization Vulnerabilit…

by Ivan Sorkin | Feb 24, 2026 | Plugins

Attack Vectors CVE-2026-25370 affects WP Compress – Instant Performance & Speed Optimization (slug: wp-compress-image-optimizer) in versions <= 6.60.28. Because this is a missing authorization issue with no privileges required (CVSS:3.1/AV:N/AC:L/PR:N/UI:N), an...

RegistrationMagic – Custom Registration Forms, User Registration, P…

by Ivan Sorkin | Feb 24, 2026 | Plugins

Attack Vectors CVE-2026-0929 affects the WordPress plugin RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (slug: custom-registration-form-builder-with-submission-manager) and is rated Medium severity (CVSS 4.3;...

PixelYourSite – Your smart PIXEL (TAG) & API Manager Vulnerability …

by Ivan Sorkin | Feb 24, 2026 | Plugins

High severity alert: PixelYourSite – Your smart PIXEL (TAG) & API Manager (slug: pixelyoursite) is reported vulnerable to Unauthenticated Stored Cross-Site Scripting in versions <= 11.2.0.1. This issue is tracked as CVE-2026-27072 with a CVSS 7.2 (High) rating....

Frontend File Manager Plugin Vulnerability (Medium) – CVE-2026-0829

by Ivan Sorkin | Feb 24, 2026 | Plugins

Attack Vectors CVE-2026-0829 affects the Frontend File Manager WordPress plugin (slug: nmedia-user-file-uploader) in versions up to and including 23.5. The issue is rated Medium severity (CVSS 5.3, vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N). Because the...

Academy LMS – WordPress LMS Plugin for Complete eLearning Solution …

by Ivan Sorkin | Feb 24, 2026 | Plugins

Attack Vectors CVE-2026-25372 affects Academy LMS – WordPress LMS Plugin for Complete eLearning Solution (slug: academy) in versions up to and including 3.5.3. The reported severity is Medium (CVSS 4.3). This issue can be abused by an authenticated user who already...

« Older Entries

Next Entries »

Calculated Fields Form Vulnerability (Medium) – CVE-2026-25368

WP Compress – Instant Performance & Speed Optimization Vulnerabilit…

RegistrationMagic – Custom Registration Forms, User Registration, P…

PixelYourSite – Your smart PIXEL (TAG) & API Manager Vulnerability …

Frontend File Manager Plugin Vulnerability (Medium) – CVE-2026-0829

Academy LMS – WordPress LMS Plugin for Complete eLearning Solution …

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!