π¨ CVE-2026-40723
Subscriber Broken Access Control in Bricks Builder <= 2.1.4 versions.
π@cveNotify
Subscriber Broken Access Control in Bricks Builder <= 2.1.4 versions.
π@cveNotify
Patchstack
Broken Access Control in WordPress Bricks Builder Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40724
CP Client Arbitrary File Download in Client Portal (Pro) <= 5.6.2 versions.
π@cveNotify
CP Client Arbitrary File Download in Client Portal (Pro) <= 5.6.2 versions.
π@cveNotify
Patchstack
Arbitrary File Download in WordPress Client Portal (Pro) Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40725
Unauthenticated PHP Object Injection in WooCommerce Product Filters < 2.0.6 versions.
π@cveNotify
Unauthenticated PHP Object Injection in WooCommerce Product Filters < 2.0.6 versions.
π@cveNotify
Patchstack
PHP Object Injection in WordPress WooCommerce Product Filters Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40726
Unauthenticated Broken Access Control in User Registration Stripe <= 1.3.14 versions.
π@cveNotify
Unauthenticated Broken Access Control in User Registration Stripe <= 1.3.14 versions.
π@cveNotify
Patchstack
Broken Access Control in WordPress User Registration Stripe Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40731
Unauthenticated Local File Inclusion in ChapterOne <= 1.7 versions.
π@cveNotify
Unauthenticated Local File Inclusion in ChapterOne <= 1.7 versions.
π@cveNotify
Patchstack
Local File Inclusion in WordPress ChapterOne Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40746
Subscriber Arbitrary File Upload in Restaurant Zone <= 0.7.8 versions.
π@cveNotify
Subscriber Arbitrary File Upload in Restaurant Zone <= 0.7.8 versions.
π@cveNotify
Patchstack
Arbitrary File Upload in WordPress Restaurant Zone Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40747
Subscriber Arbitrary File Upload in Ecommerce Zone <= 0.9.7 versions.
π@cveNotify
Subscriber Arbitrary File Upload in Ecommerce Zone <= 0.9.7 versions.
π@cveNotify
Patchstack
Arbitrary File Upload in WordPress Ecommerce Zone Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40748
Subscriber Arbitrary File Upload in Kids Gift Shop <= 0.5.4 versions.
π@cveNotify
Subscriber Arbitrary File Upload in Kids Gift Shop <= 0.5.4 versions.
π@cveNotify
Patchstack
Arbitrary File Upload in WordPress Kids Gift Shop Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40749
Subscriber Arbitrary File Upload in Charity Zone <= 1.1.1 versions.
π@cveNotify
Subscriber Arbitrary File Upload in Charity Zone <= 1.1.1 versions.
π@cveNotify
Patchstack
Arbitrary File Upload in WordPress Charity Zone Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40753
Unauthenticated PHP Object Injection in EasyMeals <= 1.5.1 versions.
π@cveNotify
Unauthenticated PHP Object Injection in EasyMeals <= 1.5.1 versions.
π@cveNotify
Patchstack
PHP Object Injection in WordPress EasyMeals Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40765
Unauthenticated Cross Site Scripting (XSS) in collectchat <= 2.4.9 versions.
π@cveNotify
Unauthenticated Cross Site Scripting (XSS) in collectchat <= 2.4.9 versions.
π@cveNotify
Patchstack
Cross Site Scripting (XSS) in WordPress collectchat Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-40768
Unauthenticated Insecure Direct Object References (IDOR) in Salon booking system <= 10.30.24 versions.
π@cveNotify
Unauthenticated Insecure Direct Object References (IDOR) in Salon booking system <= 10.30.24 versions.
π@cveNotify
Patchstack
Insecure Direct Object References (IDOR) in WordPress Salon booking system Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.