HIGH - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.5	CVE-2026-57662	WordPress Contest Gallery plugin <= 30.0.0 - SQL Injection vulnerability_CVE-2026-57662 Contributor SQL Injection in Contest Gallery	Wasiliy Strecker	Contest Gallery n/a	Jun 26, 2026	CVE
HIGH 8.8	CVE-2026-57659	WordPress Paid Memberships Pro – Add Member From Admin plugin <= 0.7.2 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57659 Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin	Stranger Studios	Paid Memberships Pro - Add Member From Admin 0.7.2	Jun 26, 2026	CVE
HIGH 8.2	CVE-2026-57655	WordPress Child theme Wizard plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57655 Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard	Jay Versluis	Child Theme Wizard n/a	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-57653	WordPress WP Job Portal plugin <= 2.5.2 - SQL Injection vulnerability_CVE-2026-57653 Contributor SQL Injection in WP Job Portal	wpjobportal	WP Job Portal n/a	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-57647	WordPress Panorama Viewer – 360 Degree Image + Video Viewer plugin <= 1.6.1 - Local File Inclusion vulnerability_CVE-2026-57647 Contributor Local File Inclusion in Panorama Viewer – 360 Degree Image + Video Viewer	bPlugins	Panorama Viewer – 360 Degree Image + Video Viewer n/a	Jun 26, 2026	CVE
HIGH 8.1	CVE-2026-57645	WordPress Newsletters plugin <= 4.13 - Broken Access Control vulnerability_CVE-2026-57645 newsletters_subscribers Broken Access Control in Newsletters	Tribulant Software	Newsletters n/a	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-57644	WordPress Restaurant Menu by MotoPress plugin <= 2.4.10 - SQL Injection vulnerability_CVE-2026-57644 Contributor SQL Injection in Restaurant Menu by MotoPress	jetmonsters	Restaurant Menu by MotoPress n/a	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-57643	WordPress WP Post Author plugin <= 3.9.1 - SQL Injection vulnerability_CVE-2026-57643 Contributor SQL Injection in WP Post Author	AF themes	WP Post Author n/a	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-57642	WordPress Gallery plugin <= 4.7.8 - SQL Injection vulnerability_CVE-2026-57642 Contributor SQL Injection in Gallery	bestwebsoft	Gallery n/a	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-57636	WordPress wpForo Forum plugin <= 3.0.9 - SQL Injection vulnerability_CVE-2026-57636 Contributor SQL Injection in wpForo Forum	Tomdever	wpForo Forum n/a	Jun 26, 2026	CVE