WordPress Latest Vulnerabilities
Latest vulnerabilities published by wordpress
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Kirki 6.0.0 - 6.0.6 - Unauthenticated Privilege Escalation via 'handle_forgot_password'
CVE-2026-8206WordPressKirki – Freeform Page ...9.8CRITICALStored Cross-Site Scripting in Simple Custom Login Page Plugin for WordPress
CVE-2026-10100WordPressSimple Custom Login Page4.4MEDIUMStored Cross-Site Scripting in Auto Image Attributes From Filename Plugin for WordPress
CVE-2026-3722WordPressAuto Image Attributes ...6.4MEDIUMSensitive Information Exposure in Slider Revolution Plugin for WordPress
CVE-2026-9048WordPressSlider Revolution4.3MEDIUMUnauthorized Data Modification in Slider Revolution Plugin by WordPress
CVE-2026-9050WordPressSlider Revolution4.3MEDIUMSQL Injection Vulnerability in WP AutoSuggest by WordPress
CVE-2018-25434WordPressWP Autosuggest👾🟡8.8HIGHMissing Authorization Vulnerability in Paolo GeoDirectory Plugin
CVE-2026-42671WordPressGeodirectory6.5MEDIUMSQL Injection Vulnerability in WP Directory Kit by WordPress
CVE-2026-42672WordPressWP Directory Kit9.3CRITICALSensitive Data Exposure in Logtivity Activity Tracking for WordPress
CVE-2026-42673WordPressActivity Logs, User Ac...7.5HIGHAuthentication Bypass in Advanced Access Manager Plugin from AAM
CVE-2026-42674WordPressAdvanced Access Manager7.5HIGHMissing Authorization Vulnerability in Themefic Hydra Booking Plugin
CVE-2026-42675WordPressHydra Booking7.3HIGHCross-site Scripting Vulnerability in myCred Plugin by WordPress
CVE-2026-42676WordPressMycred6.5MEDIUMAccess Control Flaw in WP Document Revisions by Ben Balter
CVE-2026-42677WordPressWP Document Revisions7.5HIGHCross-site Scripting Vulnerability in GiveWP Plugin by Liquid Web
CVE-2026-42678WordPressGiveWP7.1HIGHPath Traversal Vulnerability in Classified Listing Plugin by Mamunur Rashid
CVE-2026-42679WordPressClassified Listing6.5MEDIUMPrivilege Escalation Vulnerability in Contest Gallery Pro by Wasiliy Strecker
CVE-2026-42680WordPressContest Gallery Pro9.8CRITICALReflected XSS Vulnerability in E2Pdf by E2Pdf.Com
CVE-2026-42681WordPressE2PDF7.1HIGHAccess Control Flaw in Tomdever wpForo Forum Plugin
CVE-2026-42682WordPressWPforo Forum9.1CRITICALCross-site Scripting Vulnerability in VikBooking Hotel Booking Engine by e4jvikwp
CVE-2026-42683WordPressVikbooking Hotel Booki...7.1HIGHCross-Site Scripting Vulnerability in WP Statistics by VeronaLabs
CVE-2026-48839WordPressWP Statistics7.1HIGHReflected Cross-site Scripting Vulnerability in ThimPress LearnPress Plugin
CVE-2026-48865WordPressLearnpress7.1HIGHPath Traversal Vulnerability in Gravity Forms by Rocketgenius Inc.
CVE-2026-48866WordPressGravity Forms9.6CRITICALPrivilege Escalation Vulnerability in AIWU by Sergey
CVE-2026-48879WordPressAiwu9.8CRITICALAuthorization Bypass in Advanced Custom Fields Plugin for WordPress
CVE-2026-8382WordPressAdvanced Custom Fields...5.3MEDIUMAuthenticated Account Takeover Vulnerability in Simple History Plugin for WordPress
CVE-2026-7459WordPressSimple History – Track...7.5HIGH