Filter
-Infinity
0

Trending

Last week
Last month
Last year

Software

wordpress
747
wordpress wplms plugin
13
wordpress newsletters
10
wordpress church admin
7
wordpress arprice
6
wordpress ltl freight quotes plugin
6
wordpress qr code and barcode scanner reader
6
wordpress the pack elementor addons
6
wordpress armember
5
wordpress ba book everything plugin
5
wordpress bear plugin
5
wordpress booking calendar
5
wordpress gallery plugin
5
wordpress small package quotes plugin
5
wordpress academy lms plugin
4
wordpress ai engine
4
wordpress banner manager
4
wordpress event post
4
wordpress exclusive addons for elementor
4
wordpress file manager
4
wordpress modal window
4
wordpress podlove podcast publisher
4
wordpress salon booking system
4
wordpress unlimited addon for elementor
4
wordpress wp fast total search
4
wordpress 1003 mortgage application plugin
3
wordpress accept stripe payments
3
wordpress admin
3
wordpress ajax contact form
3
wordpress awesome event booking
3
wordpress buddyforms
3
wordpress captcha
3
wordpress database backup
3
wordpress import and export users and customers
3
wordpress la-studio element kit for elementor
3
wordpress olive one click demo import
3
wordpress portfolio gallery
3
wordpress product designer
3
wordpress smart online order for clover
3
wordpress videowhisper live streaming integration plugin
3
wordpress wp social links
3
wordpress 12 step meeting list
2
wordpress accordion
2
wordpress activedemand plugin
2
wordpress addons & fields for woocommerce
2
wordpress admin and site enhancements
2
wordpress admin and site enhancements (ase) pro plugin
2
wordpress administrator
2
wordpress advanced access manager
2
wordpress advanced sermons
2

WordPress DAP to Autoresponders Email SyncingDAP to Autoresponders Email Syncing <= 1.0 - Unauthenticated Information Exposure

medium
5.3
EPSS
0.03%
First published (updated )
CVE-2025-2840

WordPress Base64 Encoder/DecoderBase64 Encoder/Decoder <= 0.9.2 - Reflected XSS

medium
4.8
EPSS
0.05%
First published (updated )
CVE-2024-3822

Salon Booking SystemSalon booking system <= 9.6.5 - Editor+ Stored XSS

medium
4.8
First published (updated )
CVE-2024-2439

WordPress Contest GalleryPhotos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting

medium
5.4
First published (updated )
CVE-2024-1487

WordPress Pet ManagerPet Manager <= 1.4 - Contributor+ Stored XSS

medium
4.8
EPSS
0.04%
First published (updated )
CVE-2024-3918

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPress reCAPTCHA JetpackreCAPTCHA Jetpack <= 0.2.2 - Stored XSS via CSRF

medium
4.7
EPSS
0.04%
First published (updated )
CVE-2024-3941

WordPress JobsJobs for WordPress < 2.7.4 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2024-0820

Popup MakerWordPress Popup Maker plugin <= 1.20.2 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-24746

LearnPressWordPress LearnPress plugin <= 4.2.7.5 - Broken Access Control vulnerability

medium
5.3
First published (updated )
CVE-2025-22739

TravelerWordPress Traveler theme <= 3.1.8 - Broken Access Control vulnerability

high
7.6
First published (updated )
CVE-2025-26956

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

TravelerWordPress Traveler theme <= 3.1.8 - SQL Injection vulnerability

critical
9.3
First published (updated )
CVE-2025-26898

PluginUs.Net HUSKYWordPress HUSKY plugin <= 1.3.6.4 - Local File Inclusion vulnerability

high
7.5
First published (updated )
CVE-2025-26890

MemberSpaceWordPress MemberSpace plugin <= 2.1.13 - Reflected Cross Site Scripting (XSS) vulnerability

high
7.1
First published (updated )
CVE-2025-26874

TravelerWordPress Traveler theme <= 3.1.8 - PHP Object Injection vulnerability

critical
9
First published (updated )
CVE-2025-26873

TravelerWordPress Traveler theme <= 3.1.8 - Broken Access Control vulnerability

high
8.2
First published (updated )
CVE-2025-26733

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Astoundify Job Colors for WP Job ManagerWordPress Job Colors for WP Job Manager plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

medium
5.9
EPSS
0.03%
First published (updated )
CVE-2025-31031

Contact Form 7WordPress VaultRE Contact Form 7 plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

medium
5.9
EPSS
0.03%
First published (updated )
CVE-2025-31101

Ninja Team Click to Chat – WP Support All-in-One Floating WidgetWordPress Click to Chat – WP Support All-in-One Floating Widget plugin <= 2.3.4 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31092

UsermavenWordPress Usermaven plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerability

medium
4.3
EPSS
0.01%
First published (updated )
CVE-2025-31079

WordPress Leaky PaywallWordPress Leaky Paywall <= 4.21.7 - Cross Site Scripting (XSS) Vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31083

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Paid Memberships ProWordPress Paid Member Subscriptions <= 2.14.3 - Cross Site Scripting (XSS) Vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31088

Shipmondo Plugin for WordPressWordPress Shipmondo plugin <= 5.0.3 - Authenticated Arbitrary WordPress Option Disclosure vulnerability

medium
6.5
First published (updated )
CVE-2025-27001

Ultimate BlocksWordPress Ultimate Blocks plugin <= 3.2.7 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31077

WordPress WP Posts CarouselWordPress WP Posts Carousel <= 1.3.8 - Cross Site Scripting (XSS) Vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31094

PostXWordPress PostX <= 4.1.25 - Cross Site Scripting (XSS) Vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31096

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Bob HostelWordPress Hostel plugin <= 1.1.5.5 - Reflected Cross Site Scripting (XSS) vulnerability

high
7.1
EPSS
0.03%
First published (updated )
CVE-2025-31102

WordPress Dropdown Multisite selectorWordPress Dropdown Multisite selector < 0.9.4 - Cross Site Scripting (XSS) Vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31090

Compete Themes UnlimitedWordPress Unlimited <= 1.45 - Cross Site Scripting (XSS) Vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31073

WhisperWordPress MicroPayments plugin <= 2.9.29 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31075

WordPress RPS Include ContentWordPress RPS Include Content <= 1.2.1 - Cross Site Scripting (XSS) Vulnerability

medium
6.5
EPSS
0.03%
First published (updated )
CVE-2025-31093

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203