Latest Vulnerabilities

WordPress Gallery Custom Links Plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability (CVE-2025-26778)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress BEAR Plugin <= 1.1.4.4 - Cross Site Scripting (XSS) vulnerability (CVE-2025-26775)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress Analytify plugin <= 5.5.0 - Broken Access Control vulnerability (CVE-2025-26773)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress DethemeKit For Elementor plugin <= 2.1.8 - Cross Site Scripting (XSS) vulnerability (CVE-2025-26772)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress SKT Blocks plugin <= 1.7 - Cross Site Scripting (XSS) vulnerability (CVE-2025-26771)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress Waymark plugin <= 1.5.0 - Cross Site Scripting (XSS) vulnerability (CVE-2025-26770)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress Vertex Addons for Elementor plugin <= 1.2.0 - Cross Site Scripting (XSS) vulnerability (CVE-2025-26769)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress Spotlight Social Feeds plugin <= 1.7.1 - Sensitive Data Exposure vulnerability (CVE-2025-26758)	2025-02-18 00:30:17 UTC (about 3 hours ago)
WordPress Timeline Block plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability (CVE-2025-26754)	2025-02-18 00:30:17 UTC (about 3 hours ago)
Authentication bypass using an alternate path or channel issue exists in ”RoboForm Password Manager" App for Android versions prior to 9.7.4, which... (CVE-2025-26700)	2025-02-18 00:30:17 UTC (about 3 hours ago)