WordPress Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by wordpress
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
SQL Injection Vulnerability in YITH WooCommerce Product Add-Ons
CVE-2026-42383WordPressYith WooCommerce Produ...7.6HIGHSQL Injection Vulnerability in SureCart by SureCart
CVE-2026-9065WordPressSurecart9.3CRITICALMissing Authorization in AcyMailing Plugin for WordPress
CVE-2026-5200WordPressAcymailing – An Ultima...8.8HIGHLocal File Inclusion Vulnerability in Advanced Database Cleaner Plugin for WordPress
CVE-2026-7522WordPressAdvanced Database Clea...8.8HIGHPHP Object Injection Vulnerability in Boost Plugin for WordPress
CVE-2026-7637WordPressBoost9.8CRITICALTime-Based SQL Injection in Boost Plugin for WordPress
CVE-2026-9010WordPressBoost7.5HIGHPrivilege Escalation Vulnerability in Read More & Accordion Plugin for WordPress
CVE-2026-7467WordPressRead More & Accordion8.8HIGHPrivilege Escalation in Account Switcher Plugin for WordPress
CVE-2026-6456WordPressAccount Switcher8.8HIGHSQL Injection Vulnerability in Creative Mail by Constant Contact for WordPress
CVE-2026-3985WordPressCreative Mail – Easier...7.5HIGHPrivilege Escalation in Easy Elements for Elementor Plugin by WordPress
CVE-2026-7284WordPressEasy Elements For Elem...9.8CRITICALArbitrary File Upload Vulnerability in ProSolution WP Client Plugin for WordPress
CVE-2026-6555WordPressProsolution WP Client9.8CRITICALArbitrary File Deletion Vulnerability in Kirki Page Builder Plugin for WordPress
CVE-2026-8073WordPressKirki – Freeform Page ...7.5HIGHArbitrary File Upload Vulnerability in Piotnet Forms Plugin for WordPress
CVE-2026-4883WordPressPiotnet Forms9.8CRITICALSQL Injection Vulnerability in Contest Gallery Plugin by WordPress
CVE-2026-8912WordPressContest Gallery – Uplo...7.5HIGHArbitrary File Upload Vulnerability in Piotnet Addons for Elementor Pro Plugin
CVE-2026-4885WordPressPiotnet Addons For Ele...9.8CRITICALAPI Key Exposure in Fortis Plugin for WooCommerce by Fortis Technologies
CVE-2025-15609WordPressFortis For WooCommerce👾🟡7.5HIGHReflected Cross-Site Scripting in Ajax Load More Plugin by WordPress
CVE-2026-6495WordPressAjax Load More👾🟡7.1HIGHLocal File Inclusion Vulnerability in WP Maps Plugin for WordPress
CVE-2026-6381WordPressWP Maps👾🟡7.5HIGHSQL Injection Vulnerability in WP Photo Album Plus Plugin by WordPress
CVE-2026-6379WordPressWP Photo Album Plus👾🟡8.6HIGHUnauthenticated Stored XSS Vulnerability in Autoptimize and Other WordPress Plugins
CVE-2026-3220WordPressAutoptimize👾🟡8.8HIGHArbitrary File Upload Vulnerability in Peugeot Music Plugin for WordPress
CVE-2018-25335WordPressPeugeot Music👾🟡9.3CRITICALRemote File Inclusion Vulnerability in WP with Spritz by WordPress
CVE-2018-25329WordPressWP With Spritz👾🟡8.7HIGHPath Traversal Vulnerability in Google Drive for WordPress by Google
CVE-2018-25326WordPressGoogle Drive👾🟡8.7HIGHPrivilege Escalation Vulnerability in AI Engine Plugin for WordPress
CVE-2026-8719WordPressAi Engine – The Chatbo...8.8HIGHDirectory Traversal Vulnerability in WordPress Plugin Anti-Malware Security and Bruteforce Firewall
CVE-2021-47977WordPressMalware Security And B...👾🟡8.7HIGH