CVE Security

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8610

The TypeSquare Webfonts for ConoHa plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.0.4. This is due...

Web

CVE-2026-8610

Lire l'article

medium 6.1

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8624

The LJ comments import: reloaded plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Parameter in all versions up to, an...

Web

CVE-2026-8624

Lire l'article

medium 6.1

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8626

The SponsorMe plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via PHP_SELF Parameter in all versions up to, and including, 0.5.2 ...

Web

CVE-2026-8626

Lire l'article

medium 6.4

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8038

The Faces of Users plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'default' shortcode attribute in the 'facesofusers' short...

Web

CVE-2026-8038

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8418

The Games Catalog plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.0. This is due to missing or ...

Web

CVE-2026-8418

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8419

The Amazon Scraper plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. This is due to missing ...

Web

CVE-2026-8419

Lire l'article

medium 6.1

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8420

The BLOGCHAT Chat System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.6.3. This is due t...

Web

CVE-2026-8420

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8423

The JaviBola Custom Theme Test plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.5. This is d...

Web

CVE-2026-8423

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8424

The Remove Yellow BGBOX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to mis...

Web

CVE-2026-8424

Lire l'article

medium 4.9

26/05/2026

Vulnérabilité medium détectée - CVE-2026-7472

The Read More & Accordion plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and ...

Web

CVE-2026-7472

Lire l'article

critical 9.8

26/05/2026

Vulnérabilité critical détectée - CVE-2026-6555

The ProSolution WP Client plugin for WordPress is vulnerable to Arbitrary File Upload in versions up to, and including, 2.0.0. This is due to an array...

Web

CVE-2026-6555

Lire l'article

critical 9.8

26/05/2026

Vulnérabilité critical détectée - CVE-2026-7284

The Easy Elements for Elementor – Addons & Website Templates plugin for WordPress is vulnerable to privilege escalation via user registration in all...

Web

CVE-2026-7284

Lire l'article