Did you know Wordfence runs a Bug Bounty Program for all WordPress plugins and themes at no cost to vendors? Researchers can earn up to $31,200 per vulnerability, for all in-scope vulnerabilities submitted to our Bug Bounty Program! Find a vulnerability, submit the details directly to us, and we handle all the rest.
Last week, there were 144 vulnerabilities disclosed in 116 WordPress Plugins and 7 WordPress Themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 50 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilities in this report now to ensure your site is not affected.
Our mission with Wordfence Intelligence is to make valuable vulnerability information easily accessible to everyone, like the WordPress community, so individuals and organizations alike can utilize that data to make the internet more secure. That is why the Wordfence Intelligence user interface, vulnerability API, webhook integration, and Wordfence CLI Vulnerability Scanner are all completely free to access and utilize both personally and commercially, and why we are running this weekly vulnerability report.
Enterprises, Hosting Providers, and even Individuals can use the Wordfence CLI Vulnerability Scanner to run regular vulnerability scans across the sites they protect. Or alternatively, utilize the vulnerability Database API to receive a complete dump of our database of over 22,000 vulnerabilities and then utilize the webhook integration to stay on top of the newest vulnerabilities added in real-time, as well as any updates made to the database, all for free.
Click here to sign-up for our mailing list to receive weekly vulnerability reports like this and important WordPress Security reports in your inbox the moment they are published.
New Firewall Rules Deployed Last Week
The Wordfence Threat Intelligence Team reviews each vulnerability to determine impact and severity, along with assessing the likelihood of exploitation, to verify that the Wordfence Firewall provides sufficient protection.
The team rolled out enhanced protection via firewall rules for the following vulnerabilities in real-time to our Premium, Care, and Response customers last week:
- WAF-RULE-807 – Data redacted while we work with the vendor on a patch.
- WAF-RULE-808 – Data redacted while we work with the vendor on a patch.
- WAF-RULE-809 – Data redacted while we work with the vendor on a patch.
- WAF-RULE-810 – Data redacted while we work with the vendor on a patch.
Wordfence Premium, Care, and Response customers received this protection immediately, while users still running the free version of Wordfence will receive this enhanced protection after a 30 day delay.
Total Unpatched & Patched Vulnerabilities Last Week
| Patch Status | Number of Vulnerabilities |
|---|---|
| Patched | 99 |
| Unpatched | 45 |
Total Vulnerabilities by CVSS Severity Last Week
| Severity Rating | Number of Vulnerabilities |
|---|---|
| Medium Severity | 103 |
| High Severity | 30 |
| Critical Severity | 11 |
Total Vulnerabilities by CWE Type Last Week
| Vulnerability Type by CWE | Number of Vulnerabilities |
|---|---|
| Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) | 47 |
| Cross-Site Request Forgery (CSRF) | 25 |
| Missing Authorization | 24 |
| Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) | 13 |
| Exposure of Sensitive Information to an Unauthorized Actor | 5 |
| Improper Control of Generation of Code (‘Code Injection’) | 4 |
| Unrestricted Upload of File with Dangerous Type | 4 |
| Authentication Bypass Using an Alternate Path or Channel | 2 |
| Authorization Bypass Through User-Controlled Key | 2 |
| Deserialization of Untrusted Data | 2 |
| Improper Authorization | 2 |
| Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) | 2 |
| Incorrect Privilege Assignment | 2 |
| Relative Path Traversal | 2 |
| Server-Side Request Forgery (SSRF) | 2 |
| Generation of Error Message Containing Sensitive Information | 1 |
| Improper Access Control | 1 |
| Improper Authentication | 1 |
| Improper Privilege Management | 1 |
| Insecure Storage of Sensitive Information | 1 |
| Protection Mechanism Failure | 1 |
Researchers That Contributed to WordPress Security Last Week
| Researcher Name | Number of Vulnerabilities |
|---|---|
| 18 | |
| 10 | |
| 10 | |
| 7 | |
| 6 | |
| 6 | |
| 6 | |
| 6 | |
| 5 | |
| 5 | |
| 5 | |
| 4 | |
| 3 | |
| 3 | |
| 3 | |
| 3 | |
| 3 | |
| 2 | |
| 2 | |
| 2 | |
| 2 | |
| 2 | |
| 2 | |
| 2 | |
| 2 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 |
Are you a security researcher who would like to be featured in our weekly vulnerability report? You can responsibly disclose your WordPress vulnerability discoveries to us and earn a bounty on in-scope vulnerabilities through our Bug Bounty Program. Responsibly disclosing your vulnerability discoveries to us will also get your name added on the Wordfence Intelligence leaderboard along with being mentioned in our weekly vulnerability report.
WordPress Plugins with Reported Vulnerabilities Last Week
| Software Name | Software Slug |
|---|---|
| aDirectory – WordPress Directory Listing Plugin | adirectory |
| Admire Extra | admire-extra |
| AForms Eats | aforms-eats |
| All-Images.ai – IA Image Bank and Custom Image creation | all-images-ai |
| Analytify – Google Analytics Dashboard For WordPress (GA4 analytics made easy) | wp-analytify |
| Aparat Responsive | aparat-responsive |
| Apus Framework | apus-framework |
| Avada (Fusion) Builder | fusion-builder |
| BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net | woo-bulk-editor |
| Book a Room | book-a-room |
| Bootstrap collapse | bootstrap-collapse |
| Brizy – Page Builder | brizy |
| Chat Widget: Customer Support Button with SMS Call Button, Click to Chat Messenger, Live Chat Support Chat Button – Bit Assist | bit-assist |
| CM Map Locations – Visualize and share your locations in a few clicks | cm-map-locations |
| Content Snippet Manager | content-snippet-manager |
| ConvertPlus | convertplug |
| Customer Email Verification for WooCommerce | emails-verification-for-woocommerce |
| DethemeKit for Elementor | dethemekit-for-elementor |
| DirectoryPress Frontend | directorypress-frontend |
| Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin | gs-woo-brands |
| Distance Based Shipping Calculator | distance-based-shipping-calculator |
| DL Leadback | dl-leadback |
| DX-auto-publish | dx-auto-publish |
| Easy Amazon Product Information | easy-amazon-product-information |
| Easy Booked – Appointment Booking and Scheduling Management System for WordPress | easy-booked |
| Easy Elementor Addons | easy-elementor-addons |
| Easy Quiz Maker | n-media-wp-simple-quiz |
| Ebook Downloader | ebook-downloader |
| ElementsKit Elementor addons | elementskit-lite |
| Embed Google Map | embed-google-map |
| Event Tickets and Registration | event-tickets |
| Events Planner | events-planner |
| Export All Posts, Products, Orders, Refunds & Users | wp-ultimate-exporter |
| Filled In | filled-in |
| Font Awesome WP | font-awesome-wp |
| Front End Users | front-end-only-users |
| FuseDesk | fusedesk |
| gallery | gallery |
| GeoDirectory – WP Business Directory Plugin and Classified Listings Directory | geodirectory |
| Glance That | glance-that |
| Global Gallery – WordPress Responsive Gallery | global-gallery |
| Global Meta Keyword & Description | global-meta-keyword-and-description |
| Google Drive WP Media | google-drive-wp-media |
| Houzez Property Feed | houzez-property-feed |
| HT Mega – Absolute Addons For Elementor | ht-mega-for-elementor |
| HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce | hurrytimer |
| IE CSS3 Support | ie-css3-support |
| iNET Webkit | inet-webkit |
| JS Help Desk – The Ultimate Help Desk & Support Plugin | js-support-ticket |
| Keep Backup Daily | keep-backup-daily |
| Leyka | leyka |
| Liveticker (by stklcode) | stklcode-liveticker |
| LTL Freight Quotes – Estes Edition | ltl-freight-quotes-estes-edition |
| LTL Freight Quotes – For Customers of FedEx Freight | ltl-freight-quotes-fedex-freight-edition |
| LTL Freight Quotes – FreightQuote Edition | ltl-freight-quotes-freightquote-edition |
| LTL Freight Quotes – Unishippers Edition | ltl-freight-quotes-unishippers-edition |
| LTL Freight Quotes – Worldwide Express Edition | ltl-freight-quotes-worldwide-express-edition |
| LTL Freight Quotes – XPO Edition | ltl-freight-quotes-xpo-edition |
| Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin | majestic-support |
| Media Library Folders | media-library-plus |
| My Login Logout Plugin | my-loginlogout |
| Naver Syndication V2 | badr-naver-syndication |
| NGG Smart Image Search | ngg-smart-image-search |
| Notif Bell | notif-bell |
| Oliver POS – A WooCommerce Point of Sale (POS) | oliver-pos |
| Page/Post Specific Social Share Buttons | pagepost-specific-social-share-buttons |
| Pallet Packaging for WooCommerce | pallet-packaging-for-woocommerce |
| Post Thumbs | post-thumbs |
| Prezi Embedder | prezi-embedder |
| Qubely – Advanced Gutenberg Blocks | qubely |
| Rank Math SEO – AI SEO Tools to Dominate SEO Rankings | seo-by-rank-math |
| Read More & Accordion | expand-maker |
| Related Posts Line-up-Exactly by Milliard | related-posts-line-up-exactry-by-milliard |
| Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme. | responsive-add-ons |
| Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet And Cancel Order Features | woo-refund-and-exchange-lite |
| Rise Blocks – A Complete Gutenberg Page Builder | rise-blocks |
| RSS Filter | rss-filter |
| s2Member Pro | s2member-pro |
| Security & Malware scan by CleanTalk | security-malware-firewall |
| ShipEngine Shipping Quotes | shipengine-shipping-quotes |
| sidebarTabs | sidebartabs |
| Simple Documentation | client-documentation |
| Simple Google Calendar Outlook Events Widget | simple-google-icalendar-widget |
| Simple Responsive Menu | simple-responsive-menu |
| Small Package Quotes – Purolator Edition | small-package-quotes-purolator-edition |
| Small Package Quotes – UPS Edition | small-package-quotes-ups-edition |
| Spotlight Social Feeds – Block, Shortcode, and Widget | spotlight-social-photo-feeds |
| StaffList | stafflist |
| Stream | stream |
| SuperSaaS – online appointment scheduling | supersaas-appointment-scheduling |
| Team – Team Members Showcase Plugin | tlp-team |
| The Ultimate WordPress Toolkit – WP Extended | wpextended |
| Timeline Block – Timeline block plugin for WordPress | timeline-block-block |
| TinyMCE Advanced qTranslate fix editor problems | tinymce-advanced-qtranslate-fix-editor-problems |
| TTT Crop | ttt-crop |
| Vertex Addons for Elementor | addons-for-elementor-builder |
| Waymark | waymark |
| Welcart e-Commerce | usc-e-shop |
| what3words Address Field | 3-word-address-validation-field |
| Wibiya Toolbar | wibiya |
| Widget Options – The #1 WordPress Widget & Block Control Plugin | widget-options |
| WP Abstracts | wp-abstracts-manuscripts-manager |
| WP Activity Log | wp-security-audit-log |
| WP Airbnb Review Slider | wp-airbnb-review-slider |
| WP Booking Calendar | booking |
| WP Directorybox Manager | wp-directorybox-manager |
| WP Foodbakery | wp-foodbakery |
| WP Ghost (Hide My WP Ghost) – Security & Firewall | hide-my-wp |
| WP Html Page Sitemap | wp-html-page-sitemap |
| WP Job Board Pro | wp-job-board-pro |
| WP PHPList | phplist-form-integration |
| WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts | wedevs-project-manager |
| WP Table Manager | wp-table-manager |
| WPSyncSheets Lite For WPForms – WPForms Google Spreadsheet Addon | wpsyncsheets-wpforms |
| YouTube Gallery – YouTube Channel | yottie-lite |
| Zox News – Professional WordPress News & Magazine Theme | zox-news |
WordPress Themes with Reported Vulnerabilities Last Week
| Software Name | Software Slug |
|---|---|
| Avada | Website Builder For WordPress & WooCommerce | Avada |
| Campress | campress |
| Click Mag – Viral WordPress News Magazine/Blog Theme | click-mag |
| Listivo – Classified Ads WordPress Theme | listivo |
| Puzzles | WP Magazine / Review with Store WordPress Theme + RTL | puzzles |
| Real Estate 7 WordPress | realestate-7 |
| ZoxPress – The All-In-One WordPress News Theme | zoxpress |
Vulnerability Details
Please note that if you run the Wordfence plugin on your WordPress site, with the scanner enabled, you should’ve already been notified if your site was affected by any of these vulnerabilities. If you’d like to receive real-time notifications whenever a vulnerability is added to the Wordfence Intelligence Vulnerability Database, check out our Slack and HTTP Webhook Integration, which is completely free to utilize.
CVE-ID
CVE-2024-10960
CVE-2024-10960
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Brizy – Page Builder
Brizy – Page Builder
Researcher
CVE-ID
CVE-2024-10763
CVE-2024-10763
Patch Status
Unpatched
Unpatched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Campress
Campress
Researcher
CVE-ID
CVE-2024-13513
CVE-2024-13513
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Oliver POS – A WooCommerce Point of Sale (POS)
Oliver POS – A WooCommerce Point of Sale (POS)
Researcher
CVE-ID
CVE-2024-13421
CVE-2024-13421
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Real Estate 7 WordPress
Real Estate 7 WordPress
Researcher
CVE-ID
CVE-2024-12562
CVE-2024-12562
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
s2Member Pro
s2Member Pro
Researcher
CVE-ID
CVE-2024-13365
CVE-2024-13365
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Security & Malware scan by CleanTalk
Security & Malware scan by CleanTalk
Researcher
CVE-ID
CVE-2024-13182
CVE-2024-13182
Patch Status
Unpatched
Unpatched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
WP Directorybox Manager
WP Directorybox Manager
Researcher
CVE-ID
CVE-2025-0181
CVE-2025-0181
Patch Status
Unpatched
Unpatched
Published
Feb 10, 2025
Feb 10, 2025
Affected Software
WP Foodbakery
WP Foodbakery
Researcher
CVE-ID
CVE-2024-13011
CVE-2024-13011
Patch Status
Unpatched
Unpatched
Published
Feb 10, 2025
Feb 10, 2025
Affected Software
WP Foodbakery
WP Foodbakery
Researcher
WP Foodbakery <= 4.7 – Unauthenticated Privilege Escalation in foodbakery_registration_validation
9.8
CVE-ID
CVE-2025-0180
CVE-2025-0180
Patch Status
Unpatched
Unpatched
Published
Feb 10, 2025
Feb 10, 2025
Affected Software
WP Foodbakery
WP Foodbakery
Researcher
CVE-ID
CVE-2024-12213
CVE-2024-12213
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
WP Job Board Pro
WP Job Board Pro
Researcher
CVE-ID
CVE-2024-13714
CVE-2024-13714
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
All-Images.ai – IA Image Bank and Custom Image creation
All-Images.ai – IA Image Bank and Custom Image creation
Researcher
Apus Framework <= 2.3 – Authenticated (Subscriber+) Arbitrary Options Update in import_page_options
8.8
CVE-ID
CVE-2024-12296
CVE-2024-12296
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Apus Framework
Apus Framework
Researcher
CVE-ID
CVE-2025-22630
CVE-2025-22630
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Widget Options – The #1 WordPress Widget & Block Control Plugin
Widget Options – The #1 WordPress Widget & Block Control Plugin
Researcher
CVE-ID
CVE-2024-13643
CVE-2024-13643
Patch Status
Patched
Patched
Published
Feb 10, 2025
Feb 10, 2025
Affected Software
Zox News – Professional WordPress News & Magazine Theme
Zox News – Professional WordPress News & Magazine Theme
Researcher
CVE-ID
CVE-2024-13653
CVE-2024-13653
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
ZoxPress – The All-In-One WordPress News Theme
ZoxPress – The All-In-One WordPress News Theme
Researcher
CVE-ID
CVE-2024-13656
CVE-2024-13656
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Click Mag – Viral WordPress News Magazine/Blog Theme
Click Mag – Viral WordPress News Magazine/Blog Theme
Researcher
CVE-ID
CVE-2024-13800
CVE-2024-13800
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
ConvertPlus
ConvertPlus
Researcher
CVE-ID
CVE-2024-13770
CVE-2024-13770
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Puzzles | WP Magazine / Review with Store WordPress Theme + RTL
Puzzles | WP Magazine / Review with Store WordPress Theme + RTL
Researcher
CVE-ID
CVE-2024-12386
CVE-2024-12386
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
WP Abstracts
WP Abstracts
Researcher
CVE-ID
CVE-2024-13654
CVE-2024-13654
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
ZoxPress – The All-In-One WordPress News Theme
ZoxPress – The All-In-One WordPress News Theme
Researcher
CVE-ID
CVE-2024-13528
CVE-2024-13528
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Customer Email Verification for WooCommerce
Customer Email Verification for WooCommerce
Researcher
CVE-ID
CVE-2024-13435
CVE-2024-13435
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Ebook Downloader
Ebook Downloader
Researcher
CVE-ID
CVE-2024-12315
CVE-2024-12315
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Export All Posts, Products, Orders, Refunds & Users
Export All Posts, Products, Orders, Refunds & Users
Researcher
CVE-ID
CVE-2024-13606
CVE-2024-13606
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
JS Help Desk – The Ultimate Help Desk & Support Plugin
JS Help Desk – The Ultimate Help Desk & Support Plugin
Researcher
CVE-ID
CVE-2024-13473
CVE-2024-13473
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
LTL Freight Quotes – Worldwide Express Edition
LTL Freight Quotes – Worldwide Express Edition
Researcher
CVE-ID
CVE-2024-13488
CVE-2024-13488
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
LTL Freight Quotes – Estes Edition
LTL Freight Quotes – Estes Edition
Researcher
CVE-ID
CVE-2024-13480
CVE-2024-13480
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
LTL Freight Quotes – For Customers of FedEx Freight
LTL Freight Quotes – For Customers of FedEx Freight
Researcher
CVE-ID
CVE-2025-22290
CVE-2025-22290
Patch Status
Unpatched
Unpatched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
LTL Freight Quotes – FreightQuote Edition
LTL Freight Quotes – FreightQuote Edition
Researcher
CVE-ID
CVE-2024-13477
CVE-2024-13477
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
LTL Freight Quotes – Unishippers Edition
LTL Freight Quotes – Unishippers Edition
Researcher
CVE-ID
CVE-2024-13490
CVE-2024-13490
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
LTL Freight Quotes – XPO Edition
LTL Freight Quotes – XPO Edition
Researcher
CVE-ID
CVE-2024-13600
CVE-2024-13600
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Researcher
CVE-ID
CVE-2024-13531
CVE-2024-13531
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
ShipEngine Shipping Quotes
ShipEngine Shipping Quotes
Researcher
CVE-ID
CVE-2024-13532
CVE-2024-13532
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Small Package Quotes – Purolator Edition
Small Package Quotes – Purolator Edition
Researcher
CVE-ID
CVE-2024-13475
CVE-2024-13475
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Small Package Quotes – UPS Edition
Small Package Quotes – UPS Edition
Researcher
CVE-ID
CVE-2024-13345
CVE-2024-13345
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Avada (Fusion) Builder
Avada (Fusion) Builder
Researcher
CVE-ID
CVE-2024-13346
CVE-2024-13346
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Avada | Website Builder For WordPress & WooCommerce
Avada | Website Builder For WordPress & WooCommerce
Researcher
CVE-ID
CVE-2024-12599
CVE-2024-12599
Patch Status
Patched
Patched
Published
Feb 10, 2025
Feb 10, 2025
Affected Software
HT Mega – Absolute Addons For Elementor
HT Mega – Absolute Addons For Elementor
Researcher
CVE-ID
CVE-2025-0511
CVE-2025-0511
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Welcart e-Commerce
Welcart e-Commerce
Researcher
CVE-ID
CVE-2025-0924
CVE-2025-0924
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
WP Activity Log
WP Activity Log
Researcher
CVE-ID
CVE-2025-26549
CVE-2025-26549
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
WP Html Page Sitemap
WP Html Page Sitemap
Researcher
CVE-ID
CVE-2025-0821
CVE-2025-0821
Patch Status
Patched
Patched
Published
Feb 13, 2025
Feb 13, 2025
CVE-ID
CVE-2025-0822
CVE-2025-0822
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
CVE-ID
CVE-2024-13525
CVE-2024-13525
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Customer Email Verification for WooCommerce
Customer Email Verification for WooCommerce
Researcher
CVE-ID
CVE-2024-9601
CVE-2024-9601
Patch Status
Patched
Patched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Qubely – Advanced Gutenberg Blocks
Qubely – Advanced Gutenberg Blocks
Researcher
CVE-ID
CVE-2024-13752
CVE-2024-13752
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts
WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts
Researcher
CVE-ID
CVE-2024-13500
CVE-2024-13500
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts
WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts
Researcher
CVE-ID
CVE-2024-13665
CVE-2024-13665
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Admire Extra
Admire Extra
Researcher
CVE-ID
CVE-2025-26558
CVE-2025-26558
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Aparat Responsive
Aparat Responsive
Researcher
CVE-ID
CVE-2024-10322
CVE-2024-10322
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Brizy – Page Builder
Brizy – Page Builder
Researcher
CVE-ID
CVE-2025-26772
CVE-2025-26772
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
DethemeKit for Elementor
DethemeKit for Elementor
Researcher
CVE-ID
CVE-2024-13644
CVE-2024-13644
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
DethemeKit for Elementor
DethemeKit for Elementor
Researcher
CVE-ID
CVE-2024-11746
CVE-2024-11746
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin
Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin
Researcher
CVE-ID
CVE-2025-26761
CVE-2025-26761
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Easy Elementor Addons
Easy Elementor Addons
Researcher
CVE-ID
CVE-2024-13456
CVE-2024-13456
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Easy Quiz Maker
Easy Quiz Maker
Researcher
CVE-ID
CVE-2025-1005
CVE-2025-1005
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
ElementsKit Elementor addons
ElementsKit Elementor addons
Researcher
CVE-ID
CVE-2025-26539
CVE-2025-26539
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Embed Google Map
Embed Google Map
Researcher
CVE-ID
CVE-2025-26567
CVE-2025-26567
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Font Awesome WP
Font Awesome WP
Researcher
CVE-ID
CVE-2024-13563
CVE-2024-13563
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Front End Users
Front End Users
Researcher
CVE-ID
CVE-2025-26778
CVE-2025-26778
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
gallery
gallery
Researcher
CVE-ID
CVE-2024-13506
CVE-2024-13506
Patch Status
Patched
Patched
Published
Feb 10, 2025
Feb 10, 2025
Researcher
CVE-ID
CVE-2025-26574
CVE-2025-26574
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Google Drive WP Media
Google Drive WP Media
Researcher
HurryTimer <= 2.11.2 – Authenticated (Contributor+) Stored Cross-Site Scripting via Campaign Name
6.4
CVE-ID
CVE-2024-13735
CVE-2024-13735
Patch Status
Patched
Patched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce
HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce
Researcher
CVE-ID
CVE-2025-26766
CVE-2025-26766
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Leyka
Leyka
Researcher
CVE-ID
CVE-2024-13701
CVE-2024-13701
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Liveticker (by stklcode)
Liveticker (by stklcode)
Researcher
CVE-ID
CVE-2024-13658
CVE-2024-13658
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
NGG Smart Image Search
NGG Smart Image Search
Researcher
CVE-ID
CVE-2025-26538
CVE-2025-26538
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Prezi Embedder
Prezi Embedder
Researcher
CVE-ID
CVE-2025-0837
CVE-2025-0837
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Puzzles | WP Magazine / Review with Store WordPress Theme + RTL
Puzzles | WP Magazine / Review with Store WordPress Theme + RTL
Researcher
CVE-ID
CVE-2024-13769
CVE-2024-13769
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Puzzles | WP Magazine / Review with Store WordPress Theme + RTL
Puzzles | WP Magazine / Review with Store WordPress Theme + RTL
Researcher
CVE-ID
CVE-2024-13227
CVE-2024-13227
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Rank Math SEO – AI SEO Tools to Dominate SEO Rankings
Rank Math SEO – AI SEO Tools to Dominate SEO Rankings
Researcher
CVE-ID
CVE-2025-0506
CVE-2025-0506
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Rise Blocks – A Complete Gutenberg Page Builder
Rise Blocks – A Complete Gutenberg Page Builder
Researcher
CVE-ID
CVE-2025-22497
CVE-2025-22497
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Simple Google Calendar Outlook Events Widget
Simple Google Calendar Outlook Events Widget
Researcher
CVE-ID
CVE-2025-26754
CVE-2025-26754
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Timeline Block – Timeline block plugin for WordPress
Timeline Block – Timeline block plugin for WordPress
Researcher
CVE-ID
CVE-2025-26769
CVE-2025-26769
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Vertex Addons for Elementor
Vertex Addons for Elementor
Researcher
CVE-ID
CVE-2025-26551
CVE-2025-26551
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Bootstrap collapse
Bootstrap collapse
Researcher
CVE-ID
CVE-2025-24758
CVE-2025-24758
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
CM Map Locations – Visualize and share your locations in a few clicks
CM Map Locations – Visualize and share your locations in a few clicks
Researcher
CVE-ID
CVE-2025-26759
CVE-2025-26759
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Content Snippet Manager
Content Snippet Manager
Researcher
CVE-ID
CVE-2025-26585
CVE-2025-26585
Patch Status
Unpatched
Unpatched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
DL Leadback
DL Leadback
Researcher
CVE-ID
CVE-2025-26577
CVE-2025-26577
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
DX-auto-publish
DX-auto-publish
Researcher
Easy Amazon Product Information <= 4.0.1 – Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-ID
CVE-2025-26568
CVE-2025-26568
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Easy Amazon Product Information
Easy Amazon Product Information
Researcher
CVE-ID
CVE-2025-26586
CVE-2025-26586
Patch Status
Unpatched
Unpatched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Events Planner
Events Planner
Researcher
CVE-ID
CVE-2025-22628
CVE-2025-22628
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Filled In
Filled In
Researcher
CVE-ID
CVE-2025-26570
CVE-2025-26570
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Glance That
Glance That
Researcher
Global Meta Keyword & Description <= 2.3 – Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
CVE-ID
CVE-2025-26550
CVE-2025-26550
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Global Meta Keyword & Description
Global Meta Keyword & Description
Researcher
CVE-ID
CVE-2025-26589
CVE-2025-26589
Patch Status
Unpatched
Unpatched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
IE CSS3 Support
IE CSS3 Support
Researcher
CVE-ID
CVE-2024-13867
CVE-2024-13867
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Listivo – Classified Ads WordPress Theme
Listivo – Classified Ads WordPress Theme
Researcher
CVE-ID
CVE-2025-22284
CVE-2025-22284
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
LTL Freight Quotes – Unishippers Edition
LTL Freight Quotes – Unishippers Edition
Researcher
CVE-ID
CVE-2025-22286
CVE-2025-22286
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
LTL Freight Quotes – Worldwide Express Edition
LTL Freight Quotes – Worldwide Express Edition
Researcher
CVE-ID
CVE-2025-26547
CVE-2025-26547
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
My Login Logout Plugin
My Login Logout Plugin
Researcher
CVE-ID
CVE-2025-26552
CVE-2025-26552
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Naver Syndication V2
Naver Syndication V2
Researcher
CVE-ID
CVE-2025-26580
CVE-2025-26580
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Page/Post Specific Social Share Buttons
Page/Post Specific Social Share Buttons
Researcher
CVE-ID
CVE-2025-26569
CVE-2025-26569
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Post Thumbs
Post Thumbs
Researcher
CVE-ID
CVE-2025-26545
CVE-2025-26545
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Related Posts Line-up-Exactly by Milliard
Related Posts Line-up-Exactly by Milliard
Researcher
CVE-ID
CVE-2025-26562
CVE-2025-26562
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
RSS Filter
RSS Filter
Researcher
CVE-ID
CVE-2025-26587
CVE-2025-26587
Patch Status
Unpatched
Unpatched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
sidebarTabs
sidebarTabs
Researcher
CVE-ID
CVE-2025-26578
CVE-2025-26578
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Simple Documentation
Simple Documentation
Researcher
CVE-ID
CVE-2025-26543
CVE-2025-26543
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Simple Responsive Menu
Simple Responsive Menu
Researcher
CVE-ID
CVE-2025-26582
CVE-2025-26582
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
TinyMCE Advanced qTranslate fix editor problems
TinyMCE Advanced qTranslate fix editor problems
Researcher
CVE-ID
CVE-2025-26588
CVE-2025-26588
Patch Status
Unpatched
Unpatched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
TTT Crop
TTT Crop
Researcher
CVE-ID
CVE-2025-26768
CVE-2025-26768
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
what3words Address Field
what3words Address Field
Researcher
CVE-ID
CVE-2025-26571
CVE-2025-26571
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Wibiya Toolbar
Wibiya Toolbar
Researcher
CVE-ID
CVE-2024-13010
CVE-2024-13010
Patch Status
Unpatched
Unpatched
Published
Feb 10, 2025
Feb 10, 2025
Affected Software
WP Foodbakery
WP Foodbakery
Researcher
CVE-ID
CVE-2025-26572
CVE-2025-26572
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
WP PHPList
WP PHPList
Researcher
CVE-ID
CVE-2024-13641
CVE-2024-13641
Patch Status
Patched
Patched
Published
Feb 13, 2025
Feb 13, 2025
CVE-ID
CVE-2025-26775
CVE-2025-26775
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net
BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net
Researcher
CVE-ID
CVE-2025-26561
CVE-2025-26561
Patch Status
Unpatched
Unpatched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
YouTube Gallery – YouTube Channel
YouTube Gallery – YouTube Channel
Researcher
CVE-ID
CVE-2024-13879
CVE-2024-13879
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Stream
Stream
Researcher
CVE-ID
CVE-2024-13814
CVE-2024-13814
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Global Gallery – WordPress Responsive Gallery
Global Gallery – WordPress Responsive Gallery
Researcher
CVE-ID
CVE-2024-13834
CVE-2024-13834
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme.
Responsive Plus – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme.
Researcher
CVE-ID
CVE-2024-13692
CVE-2024-13692
Patch Status
Patched
Patched
Published
Feb 13, 2025
Feb 13, 2025
CVE-ID
CVE-2024-13539
CVE-2024-13539
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
AForms Eats
AForms Eats
Researcher
CVE-ID
CVE-2025-1402
CVE-2025-1402
Patch Status
Patched
Patched
Published
Feb 13, 2025
Feb 13, 2025
Affected Software
Event Tickets and Registration
Event Tickets and Registration
Researcher
CVE-ID
CVE-2024-13794
CVE-2024-13794
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
WP Ghost (Hide My WP Ghost) – Security & Firewall
WP Ghost (Hide My WP Ghost) – Security & Firewall
Researcher
CVE-ID
CVE-2025-22629
CVE-2025-22629
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
iNET Webkit
iNET Webkit
Researcher
CVE-ID
CVE-2025-22287
CVE-2025-22287
Patch Status
Unpatched
Unpatched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
LTL Freight Quotes – FreightQuote Edition
LTL Freight Quotes – FreightQuote Edition
Researcher
CVE-ID
CVE-2025-22289
CVE-2025-22289
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
LTL Freight Quotes – Unishippers Edition
LTL Freight Quotes – Unishippers Edition
Researcher
CVE-ID
CVE-2025-22291
CVE-2025-22291
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
LTL Freight Quotes – Worldwide Express Edition
LTL Freight Quotes – Worldwide Express Edition
Researcher
CVE-ID
CVE-2025-22285
CVE-2025-22285
Patch Status
Unpatched
Unpatched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Pallet Packaging for WooCommerce
Pallet Packaging for WooCommerce
Researcher
CVE-ID
CVE-2025-26758
CVE-2025-26758
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Spotlight Social Feeds – Block, Shortcode, and Widget
Spotlight Social Feeds – Block, Shortcode, and Widget
Researcher
CVE-ID
CVE-2024-13554
CVE-2024-13554
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
The Ultimate WordPress Toolkit – WP Extended
The Ultimate WordPress Toolkit – WP Extended
Researcher
CVE-ID
CVE-2024-13821
CVE-2024-13821
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
WP Booking Calendar
WP Booking Calendar
Researcher
CVE-ID
CVE-2024-13791
CVE-2024-13791
Patch Status
Patched
Patched
Published
Feb 13, 2025
Feb 13, 2025
CVE-ID
CVE-2025-26779
CVE-2025-26779
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Keep Backup Daily
Keep Backup Daily
Researcher
CVE-ID
CVE-2025-0862
CVE-2025-0862
Patch Status
Patched
Patched
Published
Feb 10, 2025
Feb 10, 2025
Affected Software
SuperSaaS – online appointment scheduling
SuperSaaS – online appointment scheduling
Researcher
CVE-ID
CVE-2025-26755
CVE-2025-26755
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
WP Airbnb Review Slider
WP Airbnb Review Slider
Researcher
CVE-ID
CVE-2025-22496
CVE-2025-22496
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Notif Bell
Notif Bell
Researcher
CVE-ID
CVE-2024-13541
CVE-2024-13541
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
aDirectory – WordPress Directory Listing Plugin
aDirectory – WordPress Directory Listing Plugin
Researcher
CVE-ID
CVE-2025-26773
CVE-2025-26773
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Researcher
CVE-ID
CVE-2024-13437
CVE-2024-13437
Patch Status
Unpatched
Unpatched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Book a Room
Book a Room
Researcher
CVE-ID
CVE-2025-0661
CVE-2025-0661
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
DethemeKit for Elementor
DethemeKit for Elementor
Researcher
CVE-ID
CVE-2024-10581
CVE-2024-10581
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
DirectoryPress Frontend
DirectoryPress Frontend
Researcher
CVE-ID
CVE-2025-26765
CVE-2025-26765
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Distance Based Shipping Calculator
Distance Based Shipping Calculator
Researcher
CVE-ID
CVE-2025-22634
CVE-2025-22634
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Easy Booked – Appointment Booking and Scheduling Management System for WordPress
Easy Booked – Appointment Booking and Scheduling Management System for WordPress
Researcher
CVE-ID
CVE-2025-0808
CVE-2025-0808
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
Houzez Property Feed
Houzez Property Feed
Researcher
CVE-ID
CVE-2024-13601
CVE-2024-13601
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Researcher
CVE-ID
CVE-2025-0935
CVE-2025-0935
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Media Library Folders
Media Library Folders
Researcher
CVE-ID
CVE-2024-13229
CVE-2024-13229
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Rank Math SEO – AI SEO Tools to Dominate SEO Rankings
Rank Math SEO – AI SEO Tools to Dominate SEO Rankings
Researcher
CVE-ID
CVE-2024-13639
CVE-2024-13639
Patch Status
Patched
Patched
Published
Feb 12, 2025
Feb 12, 2025
Affected Software
Read More & Accordion
Read More & Accordion
Researcher
CVE-ID
CVE-2024-13439
CVE-2024-13439
Patch Status
Patched
Patched
Published
Feb 14, 2025
Feb 14, 2025
Affected Software
Team – Team Members Showcase Plugin
Team – Team Members Showcase Plugin
Researcher
CVE-ID
CVE-2024-13374
CVE-2024-13374
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
WP Table Manager
WP Table Manager
Researcher
CVE-ID
CVE-2024-12164
CVE-2024-12164
Patch Status
Patched
Patched
Published
Feb 11, 2025
Feb 11, 2025
Affected Software
WPSyncSheets Lite For WPForms – WPForms Google Spreadsheet Addon
WPSyncSheets Lite For WPForms – WPForms Google Spreadsheet Addon
Researcher
As a reminder, Wordfence has curated an industry leading vulnerability database with all known WordPress core, theme, and plugin vulnerabilities known as Wordfence Intelligence.
This database is continuously updated, maintained, and populated by Wordfence’s highly credentialed and experienced vulnerability researchers through in-house vulnerability research, vulnerability researchers submitting directly to us through our Bug Bounty Program, and by monitoring varying sources to capture all publicly available WordPress vulnerability information and adding additional context where we can.
Click here to sign-up for our mailing list to receive weekly vulnerability reports like this and important WordPress Security reports in your inbox the moment they are published.
The post Wordfence Intelligence Weekly WordPress Vulnerability Report (February 10, 2025 to February 16 2025) appeared first on Wordfence.
