CVE-2026-6933 - Premmerce Dev Tools <= 2.0 - Missing Authorization to Authenticated (Subscriber+) Remote Code Execution via Plugin Creation
CVE ID :CVE-2026-6933
Published : June 16, 2026, 6:16 a.m. | 1 hour, 39 minutes ago
Description :The Premmerce Dev Tools plugin for WordPress is vulnerable to Remote Code Execution via missing authorization in versions up to and including 2.0. This is due to the 'generatePluginHandler' function lacking any authorization check before processing user-supplied POST data, combined with the 'createFromStub' function performing unsanitized string substitution of the 'premmerce_plugin_namespace' parameter directly into PHP stub files written to the wp-content/plugins/ directory. An attacker can inject a semicolon followed by arbitrary PHP code into the namespace parameter, causing the generated plugin file to contain and execute that code when accessed via HTTP. This makes it possible for authenticated attackers with Subscriber-level access and above to create arbitrary PHP files on the server and achieve remote code execution.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-6933
Published : June 16, 2026, 6:16 a.m. | 1 hour, 39 minutes ago
Description :The Premmerce Dev Tools plugin for WordPress is vulnerable to Remote Code Execution via missing authorization in versions up to and including 2.0. This is due to the 'generatePluginHandler' function lacking any authorization check before processing user-supplied POST data, combined with the 'createFromStub' function performing unsanitized string substitution of the 'premmerce_plugin_namespace' parameter directly into PHP stub files written to the wp-content/plugins/ directory. An attacker can inject a semicolon followed by arbitrary PHP code into the namespace parameter, causing the generated plugin file to contain and execute that code when accessed via HTTP. This makes it possible for authenticated attackers with Subscriber-level access and above to create arbitrary PHP files on the server and achieve remote code execution.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-8443 - WP Review Slider Pro <= 12.6.8 - Authenticated (Subscriber+) SQL Injection via 'stypes' Parameter
CVE ID :CVE-2026-8443
Published : June 16, 2026, 6:16 a.m. | 1 hour, 39 minutes ago
Description :The WP Review Slider Pro plugin for WordPress is vulnerable to SQL Injection via the 'stypes' and 'slocations' parameters of the wppro_get_overall_chart_data AJAX action in versions up to, and including, 12.6.8. This is due to the use of stripslashes() on user-supplied JSON strings prior to json_decode(), which removes the escaping applied by WordPress's wp_magic_quotes; the resulting decoded array values are then concatenated directly into SQL WHERE clauses without parameterization, and the constructed query is executed via $wpdb->get_results() without $wpdb->prepare(). This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. The handler also returns the executed SQL string in its JSON response, which simplifies oracle construction for blind exploitation.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-8443
Published : June 16, 2026, 6:16 a.m. | 1 hour, 39 minutes ago
Description :The WP Review Slider Pro plugin for WordPress is vulnerable to SQL Injection via the 'stypes' and 'slocations' parameters of the wppro_get_overall_chart_data AJAX action in versions up to, and including, 12.6.8. This is due to the use of stripslashes() on user-supplied JSON strings prior to json_decode(), which removes the escaping applied by WordPress's wp_magic_quotes; the resulting decoded array values are then concatenated directly into SQL WHERE clauses without parameterization, and the constructed query is executed via $wpdb->get_results() without $wpdb->prepare(). This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. The handler also returns the executed SQL string in its JSON response, which simplifies oracle construction for blind exploitation.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-9187 - Abandoned Contact Form 7 <= 2.2 - Missing Authorization to Unauthenticated Arbitrary Post Deletion via 'recover_id' Parameter
CVE ID :CVE-2026-9187
Published : June 16, 2026, 6:16 a.m. | 1 hour, 39 minutes ago
Description :The Abandoned Contact Form 7 plugin for WordPress is vulnerable to unauthorized arbitrary post deletion in versions up to, and including, 2.2. This is due to a missing capability check and missing nonce validation in the action__remove_abandoned() function, which is registered to both the wp_ajax_remove_abandoned and wp_ajax_nopriv_remove_abandoned hooks. The handler takes a user-supplied recover_id parameter from $_POST and passes it directly to wp_delete_post() with the force-delete flag set to true, without verifying that the ID belongs to the plugin's own cf7af_data post type. This makes it possible for unauthenticated attackers to permanently delete arbitrary posts, pages, or other content on the affected site by sending a single admin-ajax.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-9187
Published : June 16, 2026, 6:16 a.m. | 1 hour, 39 minutes ago
Description :The Abandoned Contact Form 7 plugin for WordPress is vulnerable to unauthorized arbitrary post deletion in versions up to, and including, 2.2. This is due to a missing capability check and missing nonce validation in the action__remove_abandoned() function, which is registered to both the wp_ajax_remove_abandoned and wp_ajax_nopriv_remove_abandoned hooks. The handler takes a user-supplied recover_id parameter from $_POST and passes it directly to wp_delete_post() with the force-delete flag set to true, without verifying that the ID belongs to the plugin's own cf7af_data post type. This makes it possible for unauthenticated attackers to permanently delete arbitrary posts, pages, or other content on the affected site by sending a single admin-ajax.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-9912 - A local privilege escalation vulnerability in Nokia SR Linux
CVE ID :CVE-2025-9912
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :Nokia SR Linux is vulnerable to a local privilege escalation vulnerability. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privilege.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2025-9912
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :Nokia SR Linux is vulnerable to a local privilege escalation vulnerability. Successful exploitation of this vulnerability may allow an authenticated user to execute arbitrary commands with superuser privilege.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-10093 - File Sharing & Download Manager <= 2.1.6 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'fldr_ttl' Parameter
CVE ID :CVE-2026-10093
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :The File Sharing & Download Manager – User Private Files plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'fldr_ttl' parameter in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-10093
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :The File Sharing & Download Manager – User Private Files plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'fldr_ttl' parameter in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-46331 - net/sched: fix pedit partial COW leading to page cache corruption
CVE ID :CVE-2026-46331
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading to page cache corruption tcf_pedit_act() computes the COW range for skb_ensure_writable() once before the key loop using tcfp_off_max_hint, but the hint does not account for the runtime header offset added by typed keys. This can leave part of the write region un-COW'd. Fix by moving skb_ensure_writable() inside the per-key loop where the actual write offset is known, and add overflow checking on the offset arithmetic. For negative offsets (e.g. Ethernet header edits at ingress), use skb_cow() to COW the headroom instead. Guard offset_valid() against INT_MIN, where negation is undefined.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-46331
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading to page cache corruption tcf_pedit_act() computes the COW range for skb_ensure_writable() once before the key loop using tcfp_off_max_hint, but the hint does not account for the runtime header offset added by typed keys. This can leave part of the write region un-COW'd. Fix by moving skb_ensure_writable() inside the per-key loop where the actual write offset is known, and add overflow checking on the offset arithmetic. For negative offsets (e.g. Ethernet header edits at ingress), use skb_cow() to COW the headroom instead. Guard offset_valid() against INT_MIN, where negation is undefined.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-8444 - WP Review Slider Pro <= 12.6.8 - Authenticated (Subscriber+) SQL Injection via 'curselrevs' Parameter
CVE ID :CVE-2026-8444
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :The WP Review Slider Pro plugin for WordPress is vulnerable to SQL Injection via the 'curselrevs[]' parameter of the wpfb_find_reviews AJAX action in versions up to, and including, 12.6.8. This is due to the handler reading $_POST['curselrevs'] raw with no sanitization or type casting, then concatenating each array element directly into a `WHERE id IN ( ... )` clause without quoting and executing via $wpdb->get_results() without $wpdb->prepare(). This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-8444
Published : June 16, 2026, 8:16 a.m. | 1 hour, 41 minutes ago
Description :The WP Review Slider Pro plugin for WordPress is vulnerable to SQL Injection via the 'curselrevs[]' parameter of the wpfb_find_reviews AJAX action in versions up to, and including, 12.6.8. This is due to the handler reading $_POST['curselrevs'] raw with no sanitization or type casting, then concatenating each array element directly into a `WHERE id IN ( ... )` clause without quoting and executing via $wpdb->get_results() without $wpdb->prepare(). This makes it possible for authenticated attackers, with Subscriber-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-5416 - Command Injection via name parameter
CVE ID :CVE-2026-5416
Published : June 16, 2026, 8:18 a.m. | 1 hour, 40 minutes ago
Description :Due to the improper neutralization of special elements used in a name parameter a low privileged remote attacker can exploit a command injection vulnerability in the Managed Ethernet Switch, resulting in full system compromise.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-5416
Published : June 16, 2026, 8:18 a.m. | 1 hour, 40 minutes ago
Description :Due to the improper neutralization of special elements used in a name parameter a low privileged remote attacker can exploit a command injection vulnerability in the Managed Ethernet Switch, resulting in full system compromise.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-10825 - Improper JSON Input Validation in WebSocket API Leads to Denial of Service
CVE ID :CVE-2026-10825
Published : June 16, 2026, 8:51 a.m. | 1 hour, 6 minutes ago
Description :A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted request that causes service disruption and may result in an unexpected device reboot.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-10825
Published : June 16, 2026, 8:51 a.m. | 1 hour, 6 minutes ago
Description :A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted request that causes service disruption and may result in an unexpected device reboot.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-68045 - WordPress WP Event SOlution plugin <= 4.1.12 - Broken Access Control vulnerability
CVE ID :CVE-2025-68045
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in WP Event SOlution <= 4.1.12 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2025-68045
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in WP Event SOlution <= 4.1.12 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-39437 - WordPress Min Max Step Quantity Limits Manager for WooCommerce plugin <= 5.2.2 - Reflected Cross Site Scripting (XSS) vulnerability
CVE ID :CVE-2026-39437
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Cross Site Scripting (XSS) in Min Max Step Quantity Limits Manager for WooCommerce <= 5.2.2 versions.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-39437
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Cross Site Scripting (XSS) in Min Max Step Quantity Limits Manager for WooCommerce <= 5.2.2 versions.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-39490 - WordPress JupiterX Core plugin <= 4.14.1 - Broken Access Control vulnerability
CVE ID :CVE-2026-39490
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in JupiterX Core <= 4.14.1 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-39490
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in JupiterX Core <= 4.14.1 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-39574 - WordPress InPost Gallery plugin <= 2.1.4.6 - SQL Injection vulnerability
CVE ID :CVE-2026-39574
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated SQL Injection in InPost Gallery <= 2.1.4.6 versions.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-39574
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated SQL Injection in InPost Gallery <= 2.1.4.6 versions.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-39581 - WordPress WP Sessions Time Monitoring Full Automatic plugin <= 1.1.4 - SQL Injection vulnerability
CVE ID :CVE-2026-39581
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Subscriber SQL Injection in WP Sessions Time Monitoring Full Automatic <= 1.1.4 versions.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-39581
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Subscriber SQL Injection in WP Sessions Time Monitoring Full Automatic <= 1.1.4 versions.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-52711 - WordPress WooCommerce POS plugin <= 1.8.14 - Broken Access Control vulnerability
CVE ID :CVE-2026-52711
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in WooCommerce POS <= 1.8.14 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-52711
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in WooCommerce POS <= 1.8.14 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-52712 - WordPress Attendance Manager plugin <= 0.6.2 - SQL Injection vulnerability
CVE ID :CVE-2026-52712
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Subscriber SQL Injection in Attendance Manager <= 0.6.2 versions.
Severity: 7.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-52712
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Subscriber SQL Injection in Attendance Manager <= 0.6.2 versions.
Severity: 7.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-52714 - WordPress SEO Plugin by Squirrly SEO plugin <= 12.4.16 - Broken Access Control vulnerability
CVE ID :CVE-2026-52714
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in SEO Plugin by Squirrly SEO <= 12.4.16 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-52714
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in SEO Plugin by Squirrly SEO <= 12.4.16 versions.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-52715 - WordPress GEO my WordPress plugin <= 4.5.5 - SQL Injection vulnerability
CVE ID :CVE-2026-52715
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated SQL Injection in GEO my WordPress <= 4.5.5 versions.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-52715
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated SQL Injection in GEO my WordPress <= 4.5.5 versions.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-54190 - WordPress Envira Photo Gallery plugin <= 1.12.5 - Broken Access Control vulnerability
CVE ID :CVE-2026-54190
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in Envira Photo Gallery <= 1.12.5 versions.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-54190
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Broken Access Control in Envira Photo Gallery <= 1.12.5 versions.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-54191 - WordPress Pods plugin <= 3.3.8 - Cross Site Scripting (XSS) vulnerability
CVE ID :CVE-2026-54191
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Cross Site Scripting (XSS) in Pods <= 3.3.8 versions.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-54191
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Cross Site Scripting (XSS) in Pods <= 3.3.8 versions.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2026-54197 - WordPress GetGenie plugin <= 4.4.1 - Sensitive Data Exposure vulnerability
CVE ID :CVE-2026-54197
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Sensitive Data Exposure in GetGenie <= 4.4.1 versions.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID :CVE-2026-54197
Published : June 16, 2026, 9 a.m. | 57 minutes ago
Description :Unauthenticated Sensitive Data Exposure in GetGenie <= 4.4.1 versions.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...