| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-6443 | Essentialplugin Plugins (Various Versions) - Injected Backdoor | essentialplugin | Accordion and Accordion Slider | Critical | 9.8 | 2026-04-17 06:44:49 | Deep Dive |
| CVE-2025-14502 | News and Blog Designer Bundle <= 1.1 - Unauthenticated Local File Inclusion | vaghasia3 | News and Blog Designer Bundle | Critical | 9.8 | 2026-01-14 05:28:13 | Deep Dive |
| CVE-2025-58711 | WordPress Blog Designer PRO plugin <= 3.4.8 - Broken Access Control vulnerability | solwin | Blog Designer PRO | Medium | 5.3 | 2025-10-29 08:38:02 | Deep Dive |
| CVE-2025-57990 | WordPress Blog Designer Plugin <= 3.1.8 - Broken Access Control Vulnerability | solwininfotech | Blog Designer | Medium | 5.4 | 2025-09-22 18:24:23 | Deep Dive |
| CVE-2025-8481 | Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid <= 1.1.7 - Cross-Site Request Forgery | mdimran41 | Blog Designer For Elementor – Post Slider, Post Carousel, Post Grid | Medium | 4.3 | 2025-09-11 07:24:58 | Deep Dive |
| CVE-2025-47694 | WordPress Blog Designer PRO plugin <= 3.4.7 - Reflected Cross Site Scripting (XSS) vulnerability | solwin | Blog Designer PRO | High | 7.1 | 2025-09-09 16:25:26 | Deep Dive |
| CVE-2025-47695 | WordPress Blog Designer PRO plugin <= 3.4.7 - Authenticated Non-Arbitrary Local File Inclusion vulnerability | solwin | Blog Designer PRO | High | 7.5 | 2025-09-09 16:25:25 | Deep Dive |
| CVE-2025-47696 | WordPress Blog Designer PRO plugin <= 3.4.7 - Unauthenticated Non-Arbitrary Local File Inclusion vulnerability | solwin | Blog Designer PRO | High | 8.1 | 2025-08-31 03:48:04 | Deep Dive |
| CVE-2025-31082 | WordPress News & Blog Designer Pack plugin <= 4.0 - Local File Inclusion vulnerability | InfornWeb | News & Blog Designer Pack | High | 8.1 | 2025-04-01 20:58:09 | Deep Dive |
| CVE-2025-31606 | WordPress SP Blog Designer plugin <= 1.0.0 - Arbitrary Shortcode Execution vulnerability | softpulseinfotech | SP Blog Designer | Medium | 4.8 | 2025-03-31 12:55:37 | Deep Dive |
| CVE-2024-52498 | WordPress SP Blog Designer plugin <= 1.0.0 - Local File Inclusion vulnerability | softpulseinfotech | SP Blog Designer | High | 7.5 | 2024-11-28 10:38:55 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-9218 | Magazine Blocks – Blog Designer, Magazine & Newspaper Website Builder, Page Builder with Posts Blocks, Post Grid <= 1.3.14 - Reflected Cross-Site Scripting | wpblockart | Magazine Blocks – Blog Designer, Magazine & Newspaper Website Builder, Page Builder with Posts Blocks, Post Grid | Medium | 6.1 | 2024-10-02 08:31:51 | Deep Dive |
| CVE-2023-5815 | News & Blog Designer Pack – WordPress Blog Plugin <= 3.4.1 - Unauthenticated Remote Code Execution via Local File Inclusion | infornweb | Blog Designer Pack – Blog, Post Grid, Post Slider, Post Carousel, Category Post, News | High | 8.1 | 2023-11-22 15:33:22 | Deep Dive |
| CVE-2022-4792 | News & Blog Designer Pack < 3.3 - Contributor+ Stored XSS via Shortcode | Unknown | News & Blog Designer Pack | 中危 | - | 2023-01-30 20:31:41 | Deep Dive |
| CVE-2022-4793 | Blog Designer – Post and Widget < 2.4.1 - Contributor+ Stored XSS via Shortcode | Unknown | Blog Designer | 中危 | - | 2023-01-30 20:31:39 | Deep Dive |