WordPress Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by wordpress
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Stored Cross-Site Scripting Vulnerability in Unlimited Elements For Elementor Plugin
CVE-2025-13692WordPressUnlimited Elements For...7.2HIGHArbitrary File Upload Vulnerability in Blubrry PowerPress Plugin for WordPress
CVE-2025-13536WordPressPowerpress Podcasting ...8.8HIGHAuthentication Bypass Vulnerability in FindAll Membership Plugin for WordPress
CVE-2025-13539WordPressFindall Membership9.8CRITICALPrivilege Escalation Vulnerability in Tiare Membership Plugin for WordPress
CVE-2025-13540WordPressTiare Membership9.8CRITICALPrivilege Escalation in Tiger Theme for WordPress by ThemeForest
CVE-2025-13680WordPressTiger8.8HIGHPrivilege Escalation Vulnerability in Tiger Theme for WordPress
CVE-2025-13675WordPressTiger9.8CRITICALPayment Bypass Vulnerability in SKT PayPal for WooCommerce Plugin by WordPress
CVE-2025-7820WordPressSkt Paypal For WooComm...7.5HIGHPrivilege Escalation in FindAll Listing Plugin for WordPress
CVE-2025-13538WordPressFindall Listing9.8CRITICALSQL Injection Vulnerability in TAX SERVICE Electronic HDM Plugin by WordPress
CVE-2025-12061WordPressTax Service Electronic...๐พ๐ก8.6HIGHArbitrary File Upload Vulnerability in AI Feeds Plugin for WordPress
CVE-2025-13597WordPressAi Feeds๐พ๐ก9.8CRITICALArbitrary File Upload Vulnerability in CIBELES AI Plugin for WordPress
CVE-2025-13595WordPressCibeles Ai๐พ๐ก9.8CRITICALArbitrary File Upload Vulnerability in ProjectList Plugin for WordPress
CVE-2025-13376WordPressProjectlist7.2HIGHStored Cross-Site Scripting Vulnerability in Telegram Bot & Channel Plugin for WordPress
CVE-2025-13068WordPressTelegram Bot & Channel7.2HIGHPrivilege Escalation Vulnerability in EduKart Pro Plugin for WordPress
CVE-2025-13559WordPressEdukart Pro9.8CRITICALRemote Code Execution Vulnerability in Sneeit Framework Plugin for WordPress
CVE-2025-6389WordPressSneeit Framework๐พ๐ก9.8CRITICALReflected Cross-Site Scripting Vulnerability in Broken Link Manager Plugin
CVE-2025-12629WordPressBroken Link Manager๐พ๐ก7.1HIGHReflected Cross-Site Scripting Vulnerability in WordPress eCommerce Plugin
CVE-2024-14015WordPressWordPress Ecommerce Pl...๐พ๐ก7.1HIGHTime-Based SQL Injection Vulnerability in Ads Pro Plugin for WordPress
CVE-2025-7402WordPressAds Pro Plugin - Multi...7.5HIGHInsecure Direct Object Reference Vulnerability in OneClick Chat to Order Plugin for WordPress
CVE-2025-13526WordPressOneclick Chat To Order7.5HIGHUnauthorized Payment Processing in CP Contact Form with PayPal Plugin for WordPress
CVE-2025-13384WordPressCp Contact Form With P...7.5HIGHCross-Site Request Forgery Vulnerability in Zegen Core Plugin for WordPress
CVE-2025-11087WordPressZegen Core8.8HIGHArbitrary File Upload Vulnerability in S2B AI Assistant Plugin for WordPress
CVE-2025-12973WordPressS2b Ai Assistant โ Cha...7.2HIGHVulnerability in Mstoreapp Mobile App by Mstoreapp Allows Unauthenticated Access
CVE-2025-11127WordPressMstoreapp Mobile App๐พ๐ก9.8CRITICALMissing Authorization Vulnerability in Jegstudio Gutenverse Form Plugin
CVE-2025-66079WordPressGutenverse Form7.3HIGHAccess Control Flaw in UsersWP by Stiofan Can Lead to Unauthorized Access
CVE-2025-66072WordPressUsersWP9.8CRITICAL