CVE Security

medium 6.1

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8420

The BLOGCHAT Chat System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.6.3. This is due t...

Web

CVE-2026-8420

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8423

The JaviBola Custom Theme Test plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.5. This is d...

Web

CVE-2026-8423

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-8424

The Remove Yellow BGBOX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to mis...

Web

CVE-2026-8424

Lire l'article

medium 4.9

26/05/2026

Vulnérabilité medium détectée - CVE-2026-7472

The Read More & Accordion plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'orderby' parameter in all versions up to, and ...

Web

CVE-2026-7472

Lire l'article

critical 9.8

26/05/2026

Vulnérabilité critical détectée - CVE-2026-6555

The ProSolution WP Client plugin for WordPress is vulnerable to Arbitrary File Upload in versions up to, and including, 2.0.0. This is due to an array...

Web

CVE-2026-6555

Lire l'article

critical 9.8

26/05/2026

Vulnérabilité critical détectée - CVE-2026-7284

The Easy Elements for Elementor – Addons & Website Templates plugin for WordPress is vulnerable to privilege escalation via user registration in all...

Web

CVE-2026-7284

Lire l'article

medium 6.1

26/05/2026

Vulnérabilité medium détectée - CVE-2026-7462

The VatanSMS WP SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `page` parameter in all versions up to, and including...

Web

CVE-2026-7462

Lire l'article

high 8.8

26/05/2026

Vulnérabilité high détectée - CVE-2026-7467

The Read More & Accordion plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.5.7. This is due to the '...

Web

CVE-2026-7467

Lire l'article

high 8.8

26/05/2026

Vulnérabilité high détectée - CVE-2026-6456

The Account Switcher plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.0.2. This is due to the `remem...

Réseau Web

CVE-2026-6456

Lire l'article

medium 6.4

26/05/2026

Vulnérabilité medium détectée - CVE-2026-6549

The Logo Manager For Enamad plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' attribute of the `vc_enamad_namad`, `vc_...

Web

CVE-2026-6549

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-6452

The Bigfishgames Syndicate plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2. This is due to ...

Web

CVE-2026-6452

Lire l'article

medium 4.3

26/05/2026

Vulnérabilité medium détectée - CVE-2026-6400

The Child Height Predictor by Ostheimer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 1.3. This...

Web

CVE-2026-6400

Lire l'article