MEDIUM - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	CVE-2026-57618	WordPress Neve PRO theme <= 3.1.2 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57618 Contributor Cross Site Scripting (XSS) in Neve PRO	Themeisle	Neve PRO n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57617	WordPress SeedProd Pro plugin < 6.19.5 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57617 Contributor Cross Site Scripting (XSS) in SeedProd Pro < 6.19.5 versions.	SeedProd LLC.	SeedProd Pro n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57431	WordPress Featured Image plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57431 Author Cross Site Scripting (XSS) in Featured Image	Mervin Praison	Featured Image n/a	Jun 26, 2026	CVE
MEDIUM 4.3	CVE-2026-57430	WordPress SEOPress PRO plugin <= 9.1.1 - Broken Access Control vulnerability_CVE-2026-57430 Contributor Broken Access Control in SEOPress PRO	SEOPress Free	SEOPress PRO n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57324	WordPress GIFT4U plugin <= 1.0.10 - Broken Access Control vulnerability_CVE-2026-57324 Unauthenticated Broken Access Control in GIFT4U	VillaTheme	GIFT4U n/a	Jun 26, 2026	CVE
MEDIUM 5.8	CVE-2026-57323	WordPress Flash & HTML5 Video plugin <= 2.11.0 - Broken Access Control vulnerability_CVE-2026-57323 Unauthenticated Broken Access Control in Flash & HTML5 Video	bPlugins	Flash & HTML5 Video n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57318	WordPress Site Reviews plugin <= 8.0.11 - Sensitive Data Exposure vulnerability_CVE-2026-57318 Subscriber Sensitive Data Exposure in Site Reviews	Gemini Labs	Site Reviews n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57316	WordPress GetGenie plugin <= 4.4.2 - Sensitive Data Exposure vulnerability_CVE-2026-57316 Subscriber Sensitive Data Exposure in GetGenie	Roxnor	GetGenie n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57313	WordPress SureCart plugin <= 4.2.2 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57313 Subscriber Cross Site Scripting (XSS) in SureCart	SureCart	SureCart n/a	Jun 26, 2026	CVE
MEDIUM 5.8	CVE-2026-56066	WordPress ShortPixel Adaptive Images plugin <= 3.11.4 - Arbitrary File Deletion vulnerability_CVE-2026-56066 Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images	ShortPixel	ShortPixel Adaptive Images n/a	Jun 26, 2026	CVE