| CVE-2026-40180 | Zip Slip Path Traversal in quarkus-openapi-generator ApicurioCodegenWrapper class | quarkiverse | quarkus-openapi-generator | - | - | 2026-04-10 19:35:53 | Deep Dive |
| CVE-2026-1336 | AI ChatBot with ChatGPT and Content Generator by AYS <= 2.7.5 - Missing Authorization to Unauthenticated API Key Modification | ays-pro | AI ChatBot with ChatGPT and Content Generator by AYS | Medium | 5.3 | 2026-03-02 23:22:55 | Deep Dive |
| CVE-2025-68880 | WordPress Simple Archive Generator plugin <= 5.2 - Reflected Cross Site Scripting (XSS) vulnerability | peterwsterling | Simple Archive Generator | - | - | 2026-02-20 15:46:45 | Deep Dive |
| CVE-2026-25338 | WordPress AI ChatBot with ChatGPT and Content Generator by AYS plugin <= 2.7.4 - Broken Access Control vulnerability | Ays Pro | AI ChatBot with ChatGPT and Content Generator by AYS | - | - | 2026-02-19 08:26:58 | Deep Dive |
| CVE-2025-14076 | iXML – Google XML sitemap generator <= 0.6 - Reflected Cross-Site Scripting via 'iXML_email' Parameter | icount | iXML – Google XML sitemap generator | Medium | 6.1 | 2026-02-19 04:36:17 | Deep Dive |
| CVE-2026-1893 | Orbisius Random Name Generator <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'btn_label' Shortcode Attribute | lordspace | Orbisius Random Name Generator | Medium | 6.4 | 2026-02-11 04:36:06 | Deep Dive |
| CVE-2026-0681 | Extended Random Number Generator <= 1.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Settings | rtddev | Extended Random Number Generator | Medium | 4.4 | 2026-02-04 08:25:30 | Deep Dive |
| CVE-2026-1745 | SourceCodester Medical Certificate Generator App cross-site request forgery | SourceCodester | Medical Certificate Generator App | Medium | 4.3 | 2026-02-02 05:02:07 | Deep Dive |
| CVE-2026-24614 | WordPress Flex QR Code Generator plugin <= 1.2.10 - Cross Site Scripting (XSS) vulnerability | Devsbrain | Flex QR Code Generator | 中危 | - | 2026-01-23 14:29:05 | Deep Dive |
| CVE-2026-24579 | WordPress Ai Image Alt Text Generator for WP plugin <= 1.1.9 - Broken Access Control vulnerability | WP Messiah | Ai Image Alt Text Generator for WP | Medium | 4.3 | 2026-01-23 14:28:59 | Deep Dive |
| CVE-2025-14793 | DK PDF – WordPress PDF Generator <= 2.3.0 - Authenticated (Author+) Server-Side Request Forgery | torstenbulk | DK PDF – WordPress PDF Generator | Medium | 5.0 | 2026-01-16 06:43:22 | Deep Dive |
| CVE-2025-13717 | Contact Form vCard Generator <= 2.4 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'wp-gvc-cf-download-id' Parameter | ashishajani | Contact Form vCard Generator | Medium | 5.3 | 2026-01-09 11:15:35 | Deep Dive |
| CVE-2025-62154 | WordPress AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One plugin <= 1.1.7 - Broken Access Control vulnerability | recorp | AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One | Medium | 4.3 | 2025-12-31 15:41:51 | Deep Dive |
| CVE-2025-62747 | WordPress Featured Image Generator plugin <= 1.3.4 - Broken Access Control vulnerability | Aum Watcharapon | Featured Image Generator | Medium | 5.3 | 2025-12-31 15:33:59 | Deep Dive |
| CVE-2025-62091 | WordPress Serial Codes Generator and Validator with WooCommerce Support plugin <= 2.8.2 - Broken Access Control vulnerability | Vollstart | Serial Codes Generator and Validator with WooCommerce Support | Medium | 5.4 | 2025-12-31 14:19:32 | Deep Dive |
| CVE-2025-49346 | WordPress Simple Archive Generator plugin <= 5.2 - Cross Site Request Forgery (CSRF) vulnerability | peterwsterling | Simple Archive Generator | High | 7.1 | 2025-12-31 04:37:01 | Deep Dive |
| CVE-2025-67469 | WordPress PDF Thumbnail Generator plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability | kubiq | PDF Thumbnail Generator | Medium | 4.3 | 2025-12-09 14:13:56 | Deep Dive |
| CVE-2025-14203 | code-projects Question Paper Generator selectquestionuser.php sql injection | code-projects | Question Paper Generator | Medium | 6.3 | 2025-12-07 21:32:06 | Deep Dive |
| CVE-2025-12673 | Flex QR Code Generator <= 1.2.7 - Unauthenticated Arbitrary File Upload | ajitdas | Flex QR Code Generator | Critical | 9.8 | 2025-12-06 05:49:26 | Deep Dive |
| CVE-2025-12879 | User Generator and Importer <= 1.2.2 - Cross-Site Request Forgery to Privilege Escalation via Arbitrary Administrator Account Creation | vinoth06 | User Generator and Importer | High | 8.8 | 2025-12-05 09:27:02 | Deep Dive |