π¨ CVE-2026-57684
Contributor Cross Site Scripting (XSS) in TheFox <= 3.9.70 versions.
π@cveNotify
Contributor Cross Site Scripting (XSS) in TheFox <= 3.9.70 versions.
π@cveNotify
Patchstack
Cross Site Scripting (XSS) in WordPress TheFox Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57685
Subscriber Broken Access Control in Martfury - WooCommerce Marketplace WordPress Theme <= 3.2.8 versions.
π@cveNotify
Subscriber Broken Access Control in Martfury - WooCommerce Marketplace WordPress Theme <= 3.2.8 versions.
π@cveNotify
Patchstack
Broken Access Control in WordPress Martfury - WooCommerce Marketplace WordPress Theme Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57686
Unauthenticated Cross Site Scripting (XSS) in WowAddons <= 1.6.14 versions.
π@cveNotify
Unauthenticated Cross Site Scripting (XSS) in WowAddons <= 1.6.14 versions.
π@cveNotify
Patchstack
Cross Site Scripting (XSS) in WordPress WowAddons Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57687
Contributor SQL Injection in Custom Field Template <= 2.7.8 versions.
π@cveNotify
Contributor SQL Injection in Custom Field Template <= 2.7.8 versions.
π@cveNotify
Patchstack
SQL Injection in WordPress Custom Field Template Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57688
Unauthenticated Broken Access Control in POS EntegratΓΆr <= 3.7.103 versions.
π@cveNotify
Unauthenticated Broken Access Control in POS EntegratΓΆr <= 3.7.103 versions.
π@cveNotify
Patchstack
Broken Access Control in WordPress POS EntegratΓΆr Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57690
Unauthenticated Cross Site Request Forgery (CSRF) in Werkstatt <= 4.7.2 versions.
π@cveNotify
Unauthenticated Cross Site Request Forgery (CSRF) in Werkstatt <= 4.7.2 versions.
π@cveNotify
Patchstack
Cross Site Request Forgery (CSRF) in WordPress Werkstatt Theme
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57747
Unauthenticated Cross Site Request Forgery (CSRF) in Booked <= 3.0.0 versions.
π@cveNotify
Unauthenticated Cross Site Request Forgery (CSRF) in Booked <= 3.0.0 versions.
π@cveNotify
Patchstack
Cross Site Request Forgery (CSRF) in WordPress Booked Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57749
Contributor Local File Inclusion in SportsPress Pro <= 2.7.29 versions.
π@cveNotify
Contributor Local File Inclusion in SportsPress Pro <= 2.7.29 versions.
π@cveNotify
Patchstack
Local File Inclusion in WordPress SportsPress Pro Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57750
Unauthenticated Broken Access Control in ez Form Calculator Premium <= 2.14.1.2 versions.
π@cveNotify
Unauthenticated Broken Access Control in ez Form Calculator Premium <= 2.14.1.2 versions.
π@cveNotify
Patchstack
Broken Access Control in WordPress ez Form Calculator Premium Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57751
Unauthenticated Cross Site Request Forgery (CSRF) in Heateor Social Login <= 1.1.39 versions.
π@cveNotify
Unauthenticated Cross Site Request Forgery (CSRF) in Heateor Social Login <= 1.1.39 versions.
π@cveNotify
Patchstack
Cross Site Request Forgery (CSRF) in WordPress Heateor Social Login Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57753
Unauthenticated Sensitive Data Exposure in Kit (formerly ConvertKit) for WooCommerce <= 2.1.5 versions.
π@cveNotify
Unauthenticated Sensitive Data Exposure in Kit (formerly ConvertKit) for WooCommerce <= 2.1.5 versions.
π@cveNotify
Patchstack
Sensitive Data Exposure in WordPress Kit (formerly ConvertKit) for WooCommerce Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57754
Contributor Cross Site Scripting (XSS) in Livemesh Addons for WPBakery Page Builder <= 3.9.4 versions.
π@cveNotify
Contributor Cross Site Scripting (XSS) in Livemesh Addons for WPBakery Page Builder <= 3.9.4 versions.
π@cveNotify
Patchstack
Cross Site Scripting (XSS) in WordPress Livemesh Addons for WPBakery Page Builder Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57755
Contributor Cross Site Scripting (XSS) in Mosaic Gallery – Advanced Gallery <= 1.2.0 versions.
π@cveNotify
Contributor Cross Site Scripting (XSS) in Mosaic Gallery – Advanced Gallery <= 1.2.0 versions.
π@cveNotify
Patchstack
Cross Site Scripting (XSS) in WordPress Mosaic Gallery β Advanced Gallery Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57756
Contributor SQL Injection in nicen-localize-image <= 1.4.9 versions.
π@cveNotify
Contributor SQL Injection in nicen-localize-image <= 1.4.9 versions.
π@cveNotify
Patchstack
SQL Injection in WordPress nicen-localize-image Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57757
Unauthenticated Cross Site Request Forgery (CSRF) in pCloud WP Backup <= 2.0.2 versions.
π@cveNotify
Unauthenticated Cross Site Request Forgery (CSRF) in pCloud WP Backup <= 2.0.2 versions.
π@cveNotify
Patchstack
Cross Site Request Forgery (CSRF) in WordPress pCloud WP Backup Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.
π¨ CVE-2026-57758
Unauthenticated Cross Site Request Forgery (CSRF) in Permalink Manager for WooCommerce <= 1.0.8.2 versions.
π@cveNotify
Unauthenticated Cross Site Request Forgery (CSRF) in Permalink Manager for WooCommerce <= 1.0.8.2 versions.
π@cveNotify
Patchstack
Cross Site Request Forgery (CSRF) in WordPress Permalink Manager for WooCommerce Plugin
Patchstack is the leading open source vulnerability research organization. Find information and protection for all WordPress, Drupal and Joomla security issues.