Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.1 CVE-2026-57314

WordPress SureCart plugin <= 4.3.2 - Reflected Cross Site Scripting (XSS) vulnerability_CVE-2026-57314

Unauthenticated Cross Site Scripting (XSS) in SureCart

SureCart SureCart n/a CVE
HIGH 7.1 CVE-2026-57312

WordPress Everest Forms plugin <= 3.4.8 - Reflected Cross Site Scripting (XSS) vulnerability_CVE-2026-57312

Unauthenticated Cross Site Scripting (XSS) in Everest Forms

wpeverest Everest Forms n/a CVE
HIGH 8.7 CVE-2026-56773

Teable – Missing Authorization in v2 REST API_CVE-2026-56773

Teable's v2 REST API controller lacks @Permissions metadata on ORPC endpoints, allowing any authenticated user to bypass authorization checks. Atta...

teableio teable CVE
HIGH 7.1 CVE-2026-56072

WordPress WoodMart theme <= 8.5.3 - Cross Site Scripting (XSS) vulnerability_CVE-2026-56072

Unauthenticated Cross Site Scripting (XSS) in WoodMart

Xtemos WoodMart n/a CVE
HIGH 7.5 CVE-2026-56069

WordPress Toolset Forms plugin <= 2.6.24 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-56069

Unauthenticated Insecure Direct Object References (IDOR) in Toolset Forms

Site Building with Toolset Toolset Forms n/a CVE
HIGH 8.5 CVE-2026-56064

WordPress Tourfic plugin <= 2.22.5 - SQL Injection vulnerability_CVE-2026-56064

Subscriber SQL Injection in Tourfic

Themefic Tourfic n/a CVE
HIGH 8.3 CVE-2026-56063

WordPress MailChimp Block plugin <= 1.1.15 - Broken Access Control vulnerability_CVE-2026-56063

Unauthenticated Broken Access Control in MailChimp Block

bPlugins MailChimp Block n/a CVE
HIGH 7.5 CVE-2026-56061

WordPress Subscriptions for WooCommerce plugin <= 1.9.5 - Broken Access Control vulnerability_CVE-2026-56061

Unauthenticated Broken Access Control in Subscriptions for WooCommerce

WP Swings Subscriptions for WooCommerce n/a CVE
HIGH 7.5 CVE-2026-56060

WordPress Print Invoice & Delivery Notes for WooCommerce plugin <= 7.1.1 - Sensitive Data Exposure vulnerability_CVE-2026-56060

Unauthenticated Sensitive Data Exposure in Print Invoice & Delivery Notes for WooCommerce

tychesoftwares Print Invoice & Delivery Notes for WooCommerce n/a CVE
HIGH 8.8 CVE-2026-56055

WordPress RealHomes theme <= 4.5.3 - PHP Object Injection vulnerability_CVE-2026-56055

Subscriber PHP Object Injection in RealHomes

InspiryThemes RealHomes n/a CVE