by Ivan Sorkin | Feb 13, 2026 | Plugins
Attack Vectors Mail Mint – Newsletters, Email Marketing, Automation, WooCommerce Emails, Post Notification, and more (slug: mail-mint) has a Medium-severity vulnerability (CVE-2026-1258, CVSS 4.9) affecting versions up to and including 1.19.2. This issue is an...
by Ivan Sorkin | Feb 13, 2026 | Plugins
Attack Vectors CVE-2026-1254 is a Medium severity issue (CVSS 4.3) affecting the WordPress plugin Modula Image Gallery – Photo Grid & Video Gallery (slug: modula-best-grid-gallery) in versions 2.13.6 and earlier. The weakness can be abused through the plugin’s...
by Ivan Sorkin | Feb 13, 2026 | Plugins
Attack Vectors CVE-2026-1843 is a High severity Stored Cross-Site Scripting (XSS) vulnerability affecting the Super Page Cache WordPress plugin (slug: wp-cloudflare-page-cache) in versions 5.2.2 and earlier. The issue is reachable over the network and does not require...
by Ivan Sorkin | Feb 13, 2026 | Plugins
Attack Vectors CVE-2026-0550 is a Medium-severity vulnerability (CVSS 6.4) affecting the WordPress plugin myCred – Points Management System For Gamification, Ranks, Badges, and Loyalty Program (slug: mycred) in versions up to and including 2.9.7.3. The issue can be...
by Ivan Sorkin | Feb 13, 2026 | Plugins
Attack Vectors Severity: Medium (CVSS 5.3) — CVE-2025-11771 affects the WordPress plugin Cryptocurrency (Token), Launchpad (Presale), ICO & IDO, Airdrop by TokenICO (slug: tokenico-cryptocurrency-token-launchpad-presale-ico-ido-airdrop) in versions up to and...
by Ivan Sorkin | Feb 13, 2026 | Plugins
Attack Vectors This Medium-severity vulnerability (CVSS 4.3) in the WordPress plugin Cryptocurrency (Token), Launchpad (Presale), ICO & IDO, Airdrop by TokenICO (slug: tokenico-cryptocurrency-token-launchpad-presale-ico-ido-airdrop) affects versions up to and...
Recent Comments