| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-25332 | WordPress Endless Posts Navigation plugin <= 2.2.9 - Broken Access Control vulnerability | Fahad Mahmood | Endless Posts Navigation | - | - | 2026-02-19 08:26:57 | Deep Dive |
| CVE-2026-24990 | WordPress WP Docs plugin <= 2.2.8 - Broken Access Control vulnerability | Fahad Mahmood | WP Docs | - | - | 2026-02-03 14:08:37 | Deep Dive |
| CVE-2025-69349 | WordPress RSS Feed Widget plugin <= 3.0.2 - Broken Access Control vulnerability | Fahad Mahmood | RSS Feed Widget | Medium | 5.4 | 2026-01-06 16:36:40 | Deep Dive |
| CVE-2025-62078 | WordPress Easy Upload Files During Checkout plugin <= 3.0.0 - Broken Access Control vulnerability | Fahad Mahmood | Easy Upload Files During Checkout | Medium | 4.3 | 2025-12-31 16:32:01 | Deep Dive |
| CVE-2025-47463 | WordPress Stock Locations for WooCommerce plugin <= 2.8.6 - Broken Access Control Vulnerability | Fahad Mahmood | Stock Locations for WooCommerce | High | 7.1 | 2025-06-09 15:54:13 | Deep Dive |
| CVE-2025-30999 | WordPress External Store for Shopify plugin <= 1.5.9 - Local File Inclusion vulnerability | Fahad Mahmood | External Store for Shopify | High | 7.5 | 2025-06-06 12:54:00 | Deep Dive |
| CVE-2025-31089 | WordPress Order Splitter for WooCommerce plugin <= 5.3.0 - SQL Injection Vulnerability | Fahad Mahmood | Order Splitter for WooCommerce | High | 8.5 | 2025-04-01 20:58:10 | Deep Dive |
| CVE-2025-31417 | WordPress WP Docs plugin < 2.2.7 - Broken Access Control vulnerability | Fahad Mahmood | WP Docs | Medium | 4.3 | 2025-03-31 06:06:31 | Deep Dive |
| CVE-2025-26751 | WordPress Alphabetic Pagination Plugin <= 3.2.1 - Reflected Cross Site Scripting (XSS) vulnerability | Fahad Mahmood | Alphabetic Pagination | High | 7.1 | 2025-02-25 14:17:50 | Deep Dive |
| CVE-2025-26779 | WordPress Keep Backup Daily plugin <= 2.1.0 - Arbitrary File Download vulnerability | Fahad Mahmood | Keep Backup Daily | Medium | 4.9 | 2025-02-16 22:17:19 | Deep Dive |
| CVE-2024-56288 | WordPress WP Docs plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability | Fahad Mahmood | WP Docs | Medium | 5.9 | 2025-01-07 10:49:16 | Deep Dive |
| CVE-2024-56223 | WordPress Gulri Slider plugin <= 3.5.8 - Reflected Cross Site Scripting (XSS) vulnerability | Fahad Mahmood | Gulri Slider | High | 7.1 | 2024-12-31 10:30:47 | Deep Dive |
| CVE-2024-54344 | WordPress WP Quick Shop plugin <= 1.3.1 - Reflected Cross Site Scripting (XSS) vulnerability | Fahad Mahmood | WP Quick Shop | High | 7.1 | 2024-12-13 14:25:41 | Deep Dive |
| CVE-2023-32574 | WordPress Injection Guard plugin <= 1.2.1 - Broken Access Control vulnerability | Fahad Mahmood | Injection Guard | Medium | 4.3 | 2024-12-13 14:23:24 | Deep Dive |
| CVE-2023-30873 | WordPress WP Docs plugin <= 1.9.8 - Broken Access Control | Fahad Mahmood | WP Docs | Medium | 5.4 | 2024-12-09 11:31:01 | Deep Dive |
| CVE-2024-47321 | WordPress WP Datepicker plugin <= 2.1.1 - Broken Access Control vulnerability | Fahad Mahmood | WP Datepicker | Medium | 6.5 | 2024-11-01 14:17:05 | Deep Dive |
| CVE-2024-49629 | WordPress Endless Posts Navigation plugin <= 2.2.7 - CSRF to Stored XSS vulnerability | Fahad Mahmood | Endless Posts Navigation | High | 7.1 | 2024-10-20 10:05:32 | Deep Dive |
| CVE-2024-48024 | WordPress Keep Backup Daily plugin <= 2.1.3 - Sensitive Data Exposure vulnerability | Fahad Mahmood | Keep Backup Daily | High | 7.5 | 2024-10-17 12:07:20 | Deep Dive |
| CVE-2024-44042 | WordPress WP Datepicker plugin <= 2.1.1 - Cross Site Scripting (XSS) vulnerability | Fahad Mahmood | WP Datepicker | Medium | 5.9 | 2024-10-06 12:01:41 | Deep Dive |
| CVE-2024-31294 | WordPress WP Sort Order plugin <= 1.3.1 - Broken Access Control vulnerability | Fahad Mahmood | WP Sort Order | Medium | 4.3 | 2024-06-09 08:50:47 | Deep Dive |