WordPress Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by wordpress
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Remote Code Execution Vulnerability in Quick Playground Plugin for WordPress
CVE-2026-1830WordPressQuick Playground9.8CRITICALMissing Authorization Vulnerability in Vertex Addons for Elementor Plugin by WordPress
CVE-2026-4326WordPressVertex Addons For Elem...8.8HIGHArbitrary File Move/Read Vulnerability in MW WP Form Plugin for WordPress
CVE-2026-5436WordPressMw WP Form8.1HIGHArbitrary File Upload Vulnerability in ProSolution WP Client Plugin for WordPress
CVE-2026-2942WordPressProsolution WP Client9.8CRITICALArbitrary File Deletion Vulnerability in Advanced Members for ACF Plugin by WordPress
CVE-2026-3243WordPressAdvanced Members For Acf8.8HIGHPHP Remote File Inclusion Flaw in UnTheme OrganicFood by WordPress
CVE-2026-39684WordPressOrganicfood7.5HIGHCross-Site Request Forgery Vulnerability in Bluestreet Theme by Priyanshu Mittal
CVE-2026-39617WordPressBluestreet9.6CRITICALArbitrary File Upload Vulnerability in Gerador de Certificados Plugin for WordPress
CVE-2026-4808WordPressGerador De Certificado...7.2HIGHArbitrary File Upload Vulnerability in DSGVO Google Web Fonts Plugin for WordPress
CVE-2026-3535WordPressDsgvo Google Web Fonts...9.8CRITICALImproper Access Control in ActivityPub Plugin for WordPress
CVE-2026-4338WordPressActivitypub👾🟡7.5HIGHPrivilege Escalation in Users Manager PN Plugin for WordPress
CVE-2026-4003WordPressUsers Manager – Pn9.8CRITICALCross-Site Request Forgery in WooCommerce Product Feed PRO by AdTribes
CVE-2026-3499WordPressProduct Feed Pro For W...8.8HIGHPHP Object Injection Vulnerability in Everest Forms Plugin for WordPress
CVE-2026-3296WordPressEverest Forms – Contac...9.8CRITICALCross-Site Request Forgery Vulnerability in Analytify Simple Social Media Share Buttons
CVE-2026-34904WordPressSimple Social Media Sh...7.5HIGHCross-Site Request Forgery Vulnerability in Analytify Under Construction
CVE-2026-34896WordPressUnder Construction, Co...7.5HIGHInsecure Direct Object Reference in Amelia Booking Plugin for WordPress
CVE-2026-5465WordPressBooking For Appointmen...8.8HIGHArbitrary File Upload Vulnerability in Ninja Forms File Uploads Plugin for WordPress
CVE-2026-0740WordPressNinja Forms - File Upl...9.8CRITICALSQL Injection Vulnerability in Media Library Assistant by David Lingren
CVE-2026-34885WordPressMedia Library Assistant8.5HIGHArbitrary File Deletion Vulnerability in wpForo Forum Plugin by WordPress
CVE-2026-3666WordPressWPforo Forum8.8HIGHStored Cross-Site Scripting in Visitor Traffic Real Time Statistics Plugin for WordPress
CVE-2026-2936WordPressVisitor Traffic Real T...7.2HIGHSensitive Information Exposure in Text to Speech Plugin for WordPress by Mementor
CVE-2026-1233WordPressText To Speech – TtsWP7.5HIGHUnauthorized Membership Payment Bypass in ProfilePress Plugin for WordPress
CVE-2026-3445WordPressPaid Membership Plugin...7.1HIGHStored Cross-Site Scripting in Widgets for Social Photo Feed Plugin by WordPress
CVE-2026-5425WordPressWidgets For Social Pho...7.2HIGHInsecure Direct Object Reference in WCFM Frontend Manager for WooCommerce
CVE-2026-4896WordPressWcfm – Frontend Manage...8.1HIGHArbitrary File Deletion in Perfmatters Plugin for WordPress
CVE-2026-4350WordPressPerfmatters8.1HIGH