HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.5	CVE-2026-52700	WordPress WCMultiShipping plugin <= 3.0.2 - SQL Injection vulnerability_CVE-2026-52700 Subscriber SQL Injection in WCMultiShipping	WcMultishipping – Mondial Relay & Chronopost for Wooommerce	WCMultiShipping n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-52699	WordPress VikRentCar plugin <= 1.4.5 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-52699 Unauthenticated Insecure Direct Object References (IDOR) in VikRentCar	e4jvikwp	VikRentCar n/a	Jun 15, 2026	CVE
HIGH 8.5	CVE-2026-52697	WordPress Taskbuilder plugin <= 5.0.7 - SQL Injection vulnerability_CVE-2026-52697 Subscriber SQL Injection in Taskbuilder	Taskbuilder	Taskbuilder n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-52695	WordPress ABC Crypto Checkout plugin <= 1.8.2 - Sensitive Data Exposure vulnerability_CVE-2026-52695 Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout	Al Monsor	ABC Crypto Checkout n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-52694	WordPress Signature Add-On for WooCommerce plugin <= 2.0 - Sensitive Data Exposure vulnerability_CVE-2026-52694 Unauthenticated Sensitive Data Exposure in Signature Add-On for WooCommerce	WP E-Signature	Signature Add-On for WooCommerce n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-52692	WordPress Affiliates Manager plugin <= 2.9.50 - Sensitive Data Exposure vulnerability_CVE-2026-52692 Unauthenticated Sensitive Data Exposure in Affiliates Manager	wp.insider	Affiliates Manager n/a	Jun 15, 2026	CVE
HIGH 8.8	CVE-2026-49780	WordPress Dokan plugin <= 5.0.2 - Privilege Escalation vulnerability_CVE-2026-49780 Customer Privilege Escalation in Dokan	Dokan, Inc.	Dokan n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-49112	WordPress Shared Files plugin <= 1.7.64 - Path Traversal vulnerability_CVE-2026-49112 Unauthenticated Path Traversal in Shared Files	Tammersoft	Shared Files n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-49110	WordPress Upsell Order Bump Offer for WooCommerce plugin <= 3.1.4 - Price Manipulation vulnerability_CVE-2026-49110 Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce	WP Swings	Upsell Order Bump Offer for WooCommerce n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-49083	WordPress LatePoint plugin <= 5.5.1 - Privilege Escalation vulnerability_CVE-2026-49083 Contributor Privilege Escalation in LatePoint	LatePoint	LatePoint n/a	Jun 15, 2026	CVE