WordPress Authenticated Stored XSS Via Date Parameter//Published on 2025-08-16//CVE-2025-8293

2025 08 16intl datetime calendarcve20258293

WordPress Authenticated Stored XSS Via Date Parameter//Published on 2025-08-16//CVE-2025-8293

Urgent CVE-2025-8293 stored XSS in Intl DateTime Calendar WordPress plugin and defenses

2025 08 16wpgymcve20256080

WordPress WPGYM Admin Account Creation Bypass//Published on 2025-08-16//CVE-2025-6080

Urgent guide to WPGYM CVE-2025-6080 privilege escalation and WP-Firewall protection

2025 08 16school managementcve202412612

Unauthenticated WordPress School Management Plugin SQL Injection//Published on 2025-08-16//CVE-2024-12612

Urgent guide to mitigating unauthenticated SQL injection in School Management plugin versions <= 93.2.0

2025 08 15add user metacve20257688

WordPress Add User Meta CSRF Stored XSS//Published on 2025-08-15//CVE-2025-7688

Urgent WordPress CVE-2025-7688: CSRF stored XSS in Add User Meta plugin; mitigation guidance.

2025 08 15linux promotional plugincve20257668

WordPress Plugin CSRF to Stored XSS Vulnerability//Published on 2025-08-15//CVE-2025-7668

Technical breakdown, risk assessment, and mitigation steps for CVE-2025-7668 Linux Promotional Plugin.

2025 08 16anber elementor addoncve20257440

WordPress Anber Elementor Addon Stored XSS Threat//Published on 2025-08-16//CVE-2025-7440

Stored XSS in Anber Elementor Addon up to v1.0.1; practical mitigation and cleanup guide.

2025 08 15assistant for nextgen gallerycve20257641

NextGEN Gallery Unauthenticated Directory Deletion Vulnerability//Published on 2025-08-15//CVE-2025-7641

CVE-2025-7641 Unauthenticated path traversal in Assistant for NextGEN Gallery (<=1.0.9) with mitigations

2025 08 15embed bokuncve20256221

Authenticated Stored XSS in Bokun WordPress Plugin//Published on 2025-08-15//CVE-2025-6221

Stored XSS in Embed Bokun <= 0.23 exploited by authenticated contributors; practical mitigation guidance.

2025 08 15last.fm recent album artworkcve20257684

WordPress Lastfm Album Artwork Plugin CSRF XSS//Published on 2025-08-15//CVE-2025-7684

Critical WordPress Last.fm plugin CSRF stored XSS CVE-2025-7684 risk and remediation guide by WP-Firewall

2025 08 15plugin readme parsercve20258720

WordPress Authenticated Stored XSS in Readme Parser//Published on 2025-08-15//CVE-2025-8720

Mitigation guide for CVE-2025-8720 stored XSS in WordPress README Parser <=1.3.15