Plugins | WPFore

Omnipress Vulnerability (Medium) – CVE-2026-25432

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors Omnipress (WordPress plugin, slug: omnipress) versions <= 1.6.7 are affected by an authenticated Stored Cross-Site Scripting (XSS) vulnerability tracked as CVE-2026-25432 with Medium severity (CVSS 6.4, vector:...

Real 3D Flipbook – 3D FlipBook, PDF FlipBook, PDF Viewer, PDF Embed…

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-25423 affects the WordPress plugin Real 3D Flipbook – 3D FlipBook, PDF FlipBook, PDF Viewer, PDF Embedder (slug: real3d-flipbook-lite) in versions up to and including 4.16.4. This is a Medium-severity issue (CVSS 4.3) that can be exploited...

News Kit Addons For Elementor Vulnerability (Medium) – CVE-2026-25416

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-25416 is a Medium-severity authorization issue (CVSS 4.3) affecting News Kit Addons For Elementor (slug: news-kit-elementor-addons) in versions <= 1.4.2. Because the weakness can be reached over the network and does not require user...

Bit Form – Custom Contact Form, Multi Step, Conversational Form & P…

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2026-25418 affects the WordPress plugin Bit Form – Custom Contact Form, Multi Step, Conversational Form & Payment Form builder (slug: bit-form) in versions <= 2.21.10. The vulnerability is a Medium-severity SQL Injection (CVSS 4.9; vector...

JAMstack Deployments Vulnerability (Medium) – CVE-2026-25409

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors JAMstack Deployments (WordPress plugin slug: wp-jamstack-deployments) versions 1.1.1 and below are affected by CVE-2026-25409, a Medium-severity missing-authorization issue (CVSS 4.3; CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N). The primary attack...

Revision Manager TMC Vulnerability (Medium) – CVE-2026-25411

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors Revision Manager TMC (WordPress plugin slug: revision-manager-tmc) is affected by a Medium-severity Cross-Site Request Forgery (CSRF) vulnerability (CVE-2026-25411, CVSS 4.3). CSRF attacks typically don’t require the attacker to log in; instead, they...

Omnipress Vulnerability (Medium) – CVE-2026-25432

Real 3D Flipbook – 3D FlipBook, PDF FlipBook, PDF Viewer, PDF Embed…

News Kit Addons For Elementor Vulnerability (Medium) – CVE-2026-25416

Bit Form – Custom Contact Form, Multi Step, Conversational Form & P…

JAMstack Deployments Vulnerability (Medium) – CVE-2026-25409

Revision Manager TMC Vulnerability (Medium) – CVE-2026-25411

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!