Plugins | WPFore

Run Contests, Raffles, and Giveaways with ContestsWP Vulnerability …

by Ivan Sorkin | Feb 10, 2026 | Plugins

Attack Vectors The WordPress plugin Run Contests, Raffles, and Giveaways with ContestsWP (slug: contest-code-checker) is affected by an unauthenticated information exposure vulnerability in versions up to and including 2.0.7 (CVE-2026-25023). Because no login is...

Mizan Demo Importer Vulnerability (Medium) – CVE-2026-25021

by Ivan Sorkin | Feb 10, 2026 | Plugins

Attack Vectors Product: Mizan Demo Importer (WordPress plugin) | Severity: Medium (CVSS 4.3) CVE-2026-25021 affects the Mizan Demo Importer plugin in versions 0.1.3 and earlier. The issue involves missing authorization checks, which means an attacker must first be...

WP Sync for Notion – Notion to WordPress Vulnerability (Medium) – C…

by Ivan Sorkin | Feb 10, 2026 | Plugins

Attack Vectors WP Sync for Notion – Notion to WordPress (slug: wp-sync-for-notion) is affected by a Medium-severity missing authorization issue (CVE: CVE-2026-25020, CVSS 4.3). The primary exposure is to authenticated users with at least Contributor-level access. In...

Visual Feedback, Review & AI Collaboration Tool For WordPress – Ata…

by Ivan Sorkin | Feb 10, 2026 | Plugins

Attack Vectors The WordPress plugin Visual Feedback, Review & AI Collaboration Tool For WordPress – Atarim (slug: atarim-visual-collaboration) has a Medium severity vulnerability (CVSS 5.3) identified as CVE-2026-25019. Because the issue involves missing...

Simple Membership WP user Import Vulnerability (Medium) – CVE-2026-…

by Ivan Sorkin | Feb 10, 2026 | Plugins

Attack Vectors The Simple Membership WP user Import plugin (slug: simple-membership-wp-user-import) is affected by a medium-severity Cross-Site Request Forgery (CSRF) issue in versions up to and including 1.9.1 (CVE-2026-24986). This type of attack typically relies on...

WP Docs Vulnerability (Medium) – CVE-2026-24990

by Ivan Sorkin | Feb 10, 2026 | Plugins

Attack Vectors CVE-2026-24990 affects the WP Docs WordPress plugin (slug: wp-docs) in versions 2.2.8 and earlier and is rated Medium severity (CVSS 4.3). The primary risk comes from authenticated access: an attacker who can log in with a low-privilege account—such as...

« Older Entries

Next Entries »

Run Contests, Raffles, and Giveaways with ContestsWP Vulnerability …

Mizan Demo Importer Vulnerability (Medium) – CVE-2026-25021

WP Sync for Notion – Notion to WordPress Vulnerability (Medium) – C…

Visual Feedback, Review & AI Collaboration Tool For WordPress – Ata…

Simple Membership WP user Import Vulnerability (Medium) – CVE-2026-…

WP Docs Vulnerability (Medium) – CVE-2026-24990

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!