by Ivan Sorkin | Mar 19, 2026 | Plugins
Attack Vectors tagDiv Composer (slug: td-composer) versions up to and including 5.4.2 are affected by a Reflected Cross-Site Scripting (XSS) vulnerability tracked as CVE-2025-50001. The issue is rated Medium severity with a CVSS 6.1...
by Ivan Sorkin | Mar 19, 2026 | Plugins
Attack Vectors The WordPress plugin Addi – Cuotas que se adaptan a ti (slug: buy-now-pay-later-addi) is affected by a Medium-severity vulnerability (CVSS 5.3) that can be exploited remotely over the network. Because the issue is described as exploitable by...
by Ivan Sorkin | Mar 19, 2026 | Plugins
Attack Vectors CVE-2025-69358 is a Medium severity vulnerability (CVSS 5.3) affecting the EventPrime – Events Calendar, Bookings and Tickets WordPress plugin (slug: eventprime-event-calendar-management) in versions 4.2.6.0 and earlier. The issue is described as a...
by Ivan Sorkin | Mar 19, 2026 | Plugins
Attack Vectors CVE-2026-1508 is a medium-severity Cross-Site Request Forgery (CSRF) issue (CVSS 4.3) affecting the WordPress plugin Court Reservation – Manage Your Court Bookings Online (slug: court-reservation) in versions prior to 1.10.9. This attack typically...
by Ivan Sorkin | Mar 19, 2026 | Plugins
Attack Vectors This Medium-severity vulnerability (CVE-2026-1753, CVSS 4.3) affects the WordPress plugin Gutena Forms – Contact Form, Survey Form, Feedback Form, Booking Form, and Custom Form Builder (slug: gutena-forms) in versions prior to 1.6.1. An attacker must be...
by Ivan Sorkin | Mar 19, 2026 | Plugins
Attack Vectors CVE-2025-15520 affects the WordPress plugin RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (slug: custom-registration-form-builder-with-submission-manager) in versions up to and including 6.0.7.1. The issue is...
Recent Comments