CVE - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	CVE-2026-40796	WordPress WPPizza plugin <= 3.19.9 - Sensitive Data Exposure vulnerability_CVE-2026-40796 Subscriber Sensitive Data Exposure in WPPizza	ollybach	WPPizza n/a	Jun 15, 2026	CVE
MEDIUM 6.5	CVE-2026-40795	WordPress Amelia plugin <= 2.2 - Broken Access Control vulnerability_CVE-2026-40795 Subscriber Broken Access Control in Amelia	TMS	Amelia n/a	Jun 15, 2026	CVE
MEDIUM 6.5	CVE-2026-40794	WordPress myCred plugin <= 3.0.3 - Broken Access Control vulnerability_CVE-2026-40794 Subscriber Broken Access Control in myCred	myCred	myCred n/a	Jun 15, 2026	CVE
MEDIUM 6.5	CVE-2026-40793	WordPress Groundhogg plugin < 4.4.1 - Broken Access Control vulnerability_CVE-2026-40793 Subscriber Broken Access Control in Groundhogg < 4.4.1 versions.	Groundhogg	Groundhogg n/a	Jun 15, 2026	CVE
MEDIUM 6.3	CVE-2026-40792	WordPress KiviCare plugin <= 4.2.1 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-40792 Subscriber Insecure Direct Object References (IDOR) in KiviCare	Iqonic Design	KiviCare n/a	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-40791	WordPress WP Time Slots Booking Form plugin <= 1.2.46 - Cross Site Scripting (XSS) vulnerability_CVE-2026-40791 Unauthenticated Cross Site Scripting (XSS) in WP Time Slots Booking Form	codepeople	WP Time Slots Booking Form n/a	Jun 15, 2026	CVE
MEDIUM 6.5	CVE-2026-40790	WordPress WP SMS plugin <= 7.2.1 - Sensitive Data Exposure vulnerability_CVE-2026-40790 Subscriber Sensitive Data Exposure in WP SMS	VeronaLabs	WP SMS n/a	Jun 15, 2026	CVE
HIGH 7.5	CVE-2026-40789	WordPress Amelia plugin <= 2.2 - Sensitive Data Exposure vulnerability_CVE-2026-40789 Unauthenticated Sensitive Data Exposure in Amelia	TMS	Amelia n/a	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-40788	WordPress ChatBot plugin <= 7.9.7 - Broken Access Control vulnerability_CVE-2026-40788 Subscriber Broken Access Control in ChatBot	QuantumCloud	ChatBot n/a	Jun 15, 2026	CVE
HIGH 7.1	CVE-2026-40787	WordPress Quiz And Survey Master plugin <= 11.0.0 - Cross Site Scripting (XSS) vulnerability_CVE-2026-40787 Unauthenticated Cross Site Scripting (XSS) in Quiz And Survey Master	ExpressTech	Quiz And Survey Master n/a	Jun 15, 2026	CVE