WordPress Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by wordpress
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Unauthorized Data Modification in WP JobHunt Plugin for WordPress
CVE-2025-7782WordPressWP Jobhunt7.6HIGHPrivilege Escalation in Flex Store Users Plugin for WordPress
CVE-2025-13619WordPressFlex Store Users9.8CRITICALArbitrary File Upload Vulnerability in File Uploader for WooCommerce by WordPress
CVE-2025-13329WordPressFile Uploader For WooC...9.8CRITICALServer-Side Request Forgery Vulnerability in HTML5 Audio Player Plugin for WordPress
CVE-2025-13999WordPressHtml5 Audio Player – T...7.2HIGHRemote Code Execution in Ocean Modal Window WordPress Plugin
CVE-2025-13307WordPressOcean Modal Window👾🟡7.2HIGHAuthentication Bypass Vulnerability in AmentoTech Tuturn Product
CVE-2025-64236WordPressTuturn9.8CRITICALSensitive Information Exposure in Hummingbird Performance Plugin by WordPress
CVE-2025-14437WordPressHummingbird Performanc...7.5HIGHData Modification and Escalation Vulnerability in Demo Importer Plus Plugin for WordPress
CVE-2025-14364WordPressDemo Importer Plus8.8HIGHLocal File Inclusion in NextGEN Gallery Plugin for WordPress
CVE-2025-13641WordPressPhoto Gallery, Sliders...8.8HIGHCross-Site Scripting Vulnerability in Bob Hostel Plugin for WordPress
CVE-2025-66119WordPressHostel7.1HIGHCross-Site Scripting Vulnerability in BoldGrid Sprout Clients
CVE-2025-66118WordPressSprout Clients7.1HIGHAccess Control Vulnerability in Ays Pro Easy Form Plugin by WordPress
CVE-2025-66117WordPressEasy Form7.5HIGHSensitive Data Exposure in Ultimate Member Widgets for Elementor by UserElements
CVE-2025-66116WordPressUltimate Member Widget...7.5HIGHCross-site Scripting Vulnerability in FolioVision FV Antispam Plugin
CVE-2025-66102WordPressFv Antispam7.5HIGHAccess Control Flaw in PropertyHive Plugin by Property Hive
CVE-2025-66088WordPressPropertyhive7.5HIGHRemote Code Inclusion Vulnerability in Hotel Booking Lite by MotoPress
CVE-2025-66078WordPressHotel Booking Lite9.1CRITICALFile Upload Vulnerability in WP Webhooks by Cozmoslabs
CVE-2025-66074WordPressWP Webhooks9CRITICALMissing Authorization in Tomdever wpForo Forum Affects User Access Control Levels
CVE-2025-66070WordPressWPforo Forum7.5HIGHMissing Authorization Vulnerability in ThimPress LearnPress Plugin
CVE-2025-66054WordPressLearnpress7.5HIGHAccess Control Vulnerability in ListingPro by CridioStudio
CVE-2025-64378WordPressListingpro7.5HIGHPHP Remote File Inclusion Vulnerability in CridioStudio ListingPro Theme
CVE-2025-64377WordPressListingpro8.1HIGHCross-site Scripting Vulnerability in CridioStudio ListingPro Product
CVE-2025-64376WordPressListingpro7.1HIGHUnrestricted File Upload Vulnerability in StylemixThemes Motors Product
CVE-2025-64374WordPressMotors9.9CRITICALLocal File Inclusion Vulnerability in Traveler Theme by ShineTheme
CVE-2025-64373WordPressTraveler8.1HIGHReflected XSS Vulnerability in Traveler Theme by ShineTheme
CVE-2025-64372WordPressTraveler7.1HIGH