Plugins | WPFore

WooEvents – Calendar and Event Booking Vulnerability (Medium) – CVE…

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2025-60121 affects the WooEvents – Calendar and Event Booking WordPress plugin (slug: woo-events) in versions up to and including 4.1.7. This is a Medium severity issue (CVSS 5.3) involving missing authorization, meaning an attacker may be...

User Notes Vulnerability (Medium) – CVE-2025-60136

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors Product: User Notes (slug: user-notes) Severity: Medium (CVSS 4.4; CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N) CVE-2025-60136 affects the User Notes WordPress plugin in versions up to and including 1.0.2. The attack requires an authenticated user with...

ListingPro Reviews Vulnerability (Medium) – CVE-2025-58667

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors ListingPro Reviews (WordPress plugin slug: listingpro-reviews) versions prior to 2.9.11 contain a Medium-severity missing authorization issue (CVSS 5.4, CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N) tracked as CVE-2025-58667. The practical attack path...

Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor Vul…

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor (slug: gutentor) versions up to and including 3.5.2 contain a Medium-severity authorization issue (CVE-2025-58680, CVSS 5.4). The primary attack vector is an authenticated WordPress user...

SUMO Memberships for WooCommerce Vulnerability (High) – CVE-2025-60222

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors SUMO Memberships for WooCommerce (slug: sumomemberships) is affected by a High-severity vulnerability (CVE-2025-60222, CVSS 8.8; vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) that can allow authenticated attackers (Subscriber-level and above) to...

RT-Theme 18 Responsive WordPress Theme Vulnerability (Critical) – C…

by Ivan Sorkin | Feb 26, 2026 | Plugins

Attack Vectors CVE-2025-32288 is a Critical vulnerability (CVSS 9.8) affecting the RT-Theme 18 | Extensions WordPress plugin (slug: rt18-extensions) used with the RT-Theme 18 Responsive WordPress Theme, in versions 2.4 and earlier. Because the issue is...

« Older Entries

Next Entries »

WooEvents – Calendar and Event Booking Vulnerability (Medium) – CVE…

User Notes Vulnerability (Medium) – CVE-2025-60136

ListingPro Reviews Vulnerability (Medium) – CVE-2025-58667

Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor Vul…

SUMO Memberships for WooCommerce Vulnerability (High) – CVE-2025-60222

RT-Theme 18 Responsive WordPress Theme Vulnerability (Critical) – C…

Recent Posts

Recent Comments

Archives

Categories

Meta

Location

Follow Us

Subscription

Success!