Plugins | WPFore

Penci Podcast Vulnerability (Medium) – CVE-2026-27058

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors Penci Podcast (WordPress plugin slug: penci-podcast) is affected by a Medium-severity vulnerability (CVE-2026-27058, CVSS 6.4; vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N) that can be exploited by an authenticated user with Contributor-level...

Penci Filter Everything Vulnerability (Medium) – CVE-2026-27057

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-27057 is a medium-severity Stored Cross-Site Scripting (XSS) vulnerability affecting the Penci Filter Everything WordPress plugin (slug: penci-filter-everything) in versions up to, and including, 1.7. It can be exploited by an authenticated...

RealPress – Real Estate Plugin Vulnerability (Medium) – CVE-2026-27050

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-27050 is a medium-severity Cross-Site Request Forgery (CSRF) issue affecting the RealPress – Real Estate Plugin (slug: realpress) in versions up to and including 1.1.0. The CVSS score is 4.3 (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N),...

Popularis Extra Vulnerability (Medium) – CVE-2026-25422

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-25422 is a Medium-severity Cross-Site Request Forgery (CSRF) vulnerability affecting the Popularis Extra WordPress plugin (popularis-extra) in versions up to and including 1.2.10 (CVSS 4.3; vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)....

Advanced iFrame Vulnerability (Medium) – CVE-2026-25453

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-25453 is a Medium-severity vulnerability (CVSS 6.4) affecting the Advanced iFrame WordPress plugin (slug: advanced-iframe) in versions up to and including 2025.10. It is an authenticated stored cross-site scripting (XSS) issue, meaning an...

Bold Page Builder Vulnerability (Medium) – CVE-2026-25451

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-25451 is a Medium-severity stored cross-site scripting (XSS) issue (CVSS 6.4) affecting Bold Page Builder (slug: bold-page-builder) versions up to and including 5.6.7. The vulnerability can be exploited by an authenticated user with...

« Older Entries

Next Entries »

Penci Podcast Vulnerability (Medium) – CVE-2026-27058

Penci Filter Everything Vulnerability (Medium) – CVE-2026-27057

RealPress – Real Estate Plugin Vulnerability (Medium) – CVE-2026-27050

Popularis Extra Vulnerability (Medium) – CVE-2026-25422

Advanced iFrame Vulnerability (Medium) – CVE-2026-25453

Bold Page Builder Vulnerability (Medium) – CVE-2026-25451

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!