Plugins | WPFore

Really Simple Security Pro Vulnerability (Medium) – CVE-2026-27397

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors CVE-2026-27397 affects the WordPress plugin Really Simple Security Pro (slug: really-simple-ssl-pro) in versions up to and including 9.5.4.0. The issue is an Insecure Direct Object Reference (IDOR) that can be exploited by an authenticated user with...

Classified Listing – AI-Powered Classified ads & Business Directory…

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors CVE-2026-23546 is a Medium-severity issue (CVSS 4.3) affecting the WordPress plugin Classified Listing – AI-Powered Classified ads & Business Directory Plugin (slug: classified-listing) in versions 5.3.4 and below. The key risk is that an attacker...

WeDesignTech Ultimate Booking Addon Vulnerability (High) – CVE-2026…

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors The WeDesignTech Ultimate Booking Addon (slug: wedesigntech-ultimate-booking-addon) vulnerability (CVE-2026-27390) is an authenticated (Subscriber+) authentication bypass affecting versions up to and including 1.0.1. That means an attacker first needs...

WeDesignTech Ultimate Booking Addon Vulnerability (Critical) – CVE-…

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors WeDesignTech Ultimate Booking Addon (slug: wedesigntech-ultimate-booking-addon) has a Critical authentication bypass vulnerability (CVE-2026-27389, CVSS 9.8). In affected versions (all versions up to and including 1.0.1), an attacker can attempt access...

DT Booking – WordPress Ultimate Booking Plugin Vulnerability (Mediu…

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors CVE-2026-27388 affects the DesignThemes Booking Manager component of DT Booking – WordPress Ultimate Booking Plugin (slug: designthemes-booking-manager) in versions 2.0 and below. The issue is a missing authorization (capability) check on a...

designthemes-portfolio Vulnerability (Medium) – CVE-2026-27385

by Ivan Sorkin | Mar 5, 2026 | Plugins

Attack Vectors DesignThemes Portfolio (designthemes-portfolio) versions 1.3 and below are affected by a Medium-severity vulnerability (CVSS 6.1) identified as CVE-2026-27385. The issue is a Reflected Cross-Site Scripting (XSS) flaw, which typically relies on an...

« Older Entries

Next Entries »

Really Simple Security Pro Vulnerability (Medium) – CVE-2026-27397

Classified Listing – AI-Powered Classified ads & Business Directory…

WeDesignTech Ultimate Booking Addon Vulnerability (High) – CVE-2026…

WeDesignTech Ultimate Booking Addon Vulnerability (Critical) – CVE-…

DT Booking – WordPress Ultimate Booking Plugin Vulnerability (Mediu…

designthemes-portfolio Vulnerability (Medium) – CVE-2026-27385

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!