Security - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.3	CVE-2026-56070	WordPress Advance Product Search plugin <= 1.4.4 - SQL Injection vulnerability_CVE-2026-56070 Unauthenticated SQL Injection in Advance Product Search	ThemeHunk	Advance Product Search n/a	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-56069	WordPress Toolset Forms plugin <= 2.6.24 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-56069 Unauthenticated Insecure Direct Object References (IDOR) in Toolset Forms	Site Building with Toolset	Toolset Forms n/a	Jun 26, 2026	CVE
CRITICAL 9.3	CVE-2026-56068	WordPress JetEngine plugin <= 3.8.10.2 - SQL Injection vulnerability_CVE-2026-56068 Unauthenticated SQL Injection in JetEngine	Crocoblock. Jetimpex Inc.	JetEngine n/a	Jun 26, 2026	CVE
CRITICAL 9.3	CVE-2026-56067	WordPress JetSmartFilters plugin <= 3.8.3 - SQL Injection vulnerability_CVE-2026-56067 Unauthenticated SQL Injection in JetSmartFilters	Crocoblock. Jetimpex Inc.	JetSmartFilters n/a	Jun 26, 2026	CVE
MEDIUM 5.8	CVE-2026-56066	WordPress ShortPixel Adaptive Images plugin <= 3.11.4 - Arbitrary File Deletion vulnerability_CVE-2026-56066 Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images	ShortPixel	ShortPixel Adaptive Images n/a	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-56064	WordPress Tourfic plugin <= 2.22.5 - SQL Injection vulnerability_CVE-2026-56064 Subscriber SQL Injection in Tourfic	Themefic	Tourfic n/a	Jun 26, 2026	CVE
HIGH 8.3	CVE-2026-56063	WordPress MailChimp Block plugin <= 1.1.15 - Broken Access Control vulnerability_CVE-2026-56063 Unauthenticated Broken Access Control in MailChimp Block	bPlugins	MailChimp Block n/a	Jun 26, 2026	CVE
CRITICAL 9.3	CVE-2026-56062	WordPress Quotes llama plugin <= 3.1.5 - SQL Injection vulnerability_CVE-2026-56062 Unauthenticated SQL Injection in Quotes llama	oooorgle	Quotes llama n/a	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-56061	WordPress Subscriptions for WooCommerce plugin <= 1.9.5 - Broken Access Control vulnerability_CVE-2026-56061 Unauthenticated Broken Access Control in Subscriptions for WooCommerce	WP Swings	Subscriptions for WooCommerce n/a	Jun 26, 2026	CVE
HIGH 7.5	CVE-2026-56060	WordPress Print Invoice & Delivery Notes for WooCommerce plugin <= 7.1.1 - Sensitive Data Exposure vulnerability_CVE-2026-56060 Unauthenticated Sensitive Data Exposure in Print Invoice & Delivery Notes for WooCommerce	tychesoftwares	Print Invoice & Delivery Notes for WooCommerce n/a	Jun 26, 2026	CVE