| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-1941 | WP Event Aggregator <= 1.8.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes | xylus | WP Event Aggregator: Import Eventbrite events, Meetup events, social events and any iCal Events into Event Calendar | Medium | 6.4 | 2026-02-18 08:26:03 | Deep Dive |
| CVE-2025-48256 | WordPress Import Social Events plugin <= 1.8.5 - Cross Site Scripting (XSS) Vulnerability | Xylus Themes | Import Social Events | Medium | 6.5 | 2025-05-19 14:45:00 | Deep Dive |