| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-0829 | Frontend File Manager Plugin <= 23.5 - Unauthenticated Arbitrary Email Sending | Unknown | Frontend File Manager Plugin | - | - | 2026-02-17 06:00:07 | Deep Dive |
| CVE-2026-0929 | RegistrationMagic < 6.0.7.2 - Subscriber+ Form Creation | Unknown | RegistrationMagic | - | - | 2026-02-16 06:00:02 | Deep Dive |
| CVE-2025-15520 | RegistrationMagic <= 6.0.7.2 - Subscriber+ Sensitive Data Disclosure | Unknown | RegistrationMagic | - | - | 2026-02-13 06:00:08 | Deep Dive |
| CVE-2025-14892 | Prime Listing Manager <= 1.1 - Unauthenticated Privilege Escalation | Unknown | Prime Listing Manager | - | - | 2026-02-12 06:00:06 | Deep Dive |
| CVE-2026-1235 | WP eCommerce <= 3.15.1 - Unauthenticated PHP Object Injection | Unknown | WP eCommerce | - | - | 2026-02-11 06:00:08 | Deep Dive |
| CVE-2025-15400 | OpenPix <= 2.13.3 - Subscriber+ Payment Gateway Settings Reset | Unknown | OpenPix for WooCommerce | - | - | 2026-02-11 06:00:04 | Deep Dive |
| CVE-2025-15491 | Post Slides <= 1.0.1 - Contributor+ Local File Inclusion | Unknown | Post Slides | - | - | 2026-02-07 06:00:07 | Deep Dive |
| CVE-2026-0658 | Five Star Restaurant Reservations < 2.7.9 - Arbitrary Bookings Deletion via CSRF | Unknown | Five Star Restaurant Reservations | - | - | 2026-02-02 06:00:04 | Deep Dive |
| CVE-2025-15396 | Library Viewer < 3.2.0 - Reflected Cross-Site Scripting | Unknown | Library Viewer | - | - | 2026-02-02 06:00:03 | Deep Dive |
| CVE-2025-15030 | User Profile Builder < 3.15.2 - Unauthenticated Arbitrary Password Reset | Unknown | User Profile Builder | - | - | 2026-02-02 06:00:02 | Deep Dive |
| CVE-2021-47908 | Ultimate POS 4.4 Persistent Cross-Site Scripting via Product Name | thewebfosters | Unknown | Medium | 6.4 | 2026-02-01 12:15:47 | Deep Dive |
| CVE-2025-14975 | Custom Login Page Customizer < 2.5.4 - Unauthenticated Arbitrary Password Reset | Unknown | Custom Login Page Customizer | - | - | 2026-01-29 06:00:02 | Deep Dive |
| CVE-2025-13471 | User Activity Log <= 2.2 - Unauthenticated Limited Arbitrary Option Update | Unknown | User Activity Log | - | - | 2026-01-28 06:00:04 | Deep Dive |
| CVE-2025-14973 | Recipe Card Blocks < 3.4.13 - Contributor+ SQLi | Unknown | Recipe Card Blocks Lite | - | - | 2026-01-26 06:00:14 | Deep Dive |
| CVE-2025-14316 | AhaChat Messenger Marketing <= 1.1 - Reflected XSS | Unknown | AhaChat Messenger Marketing | - | - | 2026-01-26 06:00:14 | Deep Dive |
| CVE-2025-12573 | Bookingor <= 1.0.12 - Subscriber+ Category Deletion | Unknown | Bookingor | - | - | 2026-01-20 06:00:07 | Deep Dive |
| CVE-2025-14829 | e-xact-hosted-payment <= 2.0 - Unauthenticated Arbitrary File Deletion | Unknown | E-xact | Hosted Payment | | - | - | 2026-01-13 06:00:08 | Deep Dive |
| CVE-2025-10915 | Dreamer Blog <= 1.2 - Subscriber+ Arbitrary Plugin Installation | Unknown | Dreamer Blog | - | - | 2026-01-13 06:00:06 | Deep Dive |
| CVE-2025-14579 | Quiz Maker < 6.7.0.89 - Admin+ Stored XSS | Unknown | Quiz Maker | - | - | 2026-01-12 06:00:10 | Deep Dive |
| CVE-2025-14803 | Nex-Forms Express WP Form Builder < 9.1.8 - Authenticated Stored XSS | Unknown | NEX-Forms | 中危 | - | 2026-01-09 06:00:13 | Deep Dive |