ব্লগ

2025 08 11b blockscve20258059

Unauthenticated Privilege Escalation in WordPress B Blocks//Published on 2025-08-11//CVE-2025-8059

Critical WordPress B Blocks CVE-2025-8059 privilege escalation patch and mitigations

2025 08 11wp chart generatorcve20258685

Authenticated Stored XSS in WordPress Chart Plugin//Published on 2025-08-11//CVE-2025-8685

CVE-2025-8685 stored XSS in WP Chart Generator shortcode wpchart with mitigation.

2025 08 11anwp football leaguescve20258767

Authenticated CSV Injection in AnWP Football Leagues//Published on 2025-08-11//CVE-2025-8767

CSV injection risk in AnWP Football Leagues <=0.16.17 with remediation steps and WP-Firewall guidance

2025 08 11simple local avatarscve20258482

Avatar Migration Authorization Bypass in Local Avatars//Published on 2025-08-11//CVE-2025-8482

Simple Local Avatars CVE-2025-8482 fix: upgrade to 2.8.5 and recommended mitigations

2025 08 11uicore elementscve20256253

WordPress UiCore Elements Unauthenticated File Read//Published on 2025-08-11//CVE-2025-6253

Urgent WordPress UiCore Elements CVE-2025-6253 unauthenticated file read advisory and WAF guidance

2025 08 11woocommerce purchase orderscve20255391

Authenticated WooCommerce Purchase Orders File Deletion Vulnerability//Published on 2025-08-11//CVE-2025-5391

CVE-2025-5391: Authenticated subscriber can delete files via WooCommerce Purchase Orders 1.0.2.

2025 08 11simple responsive slidercve20258690

Authenticated Stored XSS in WordPress Slider Plugin//Published on 2025-08-11//CVE-2025-8690

Urgent analysis of Simple Responsive Slider stored XSS CVE-2025-8690 and remediation guidance

2025 08 11wp private content pluscve20254390

Critical WordPress Private Content Plus Unauthenticated Exposure//Published on 2025-08-11//CVE-2025-4390

Urgent security guidance for WP Private Content Plus CVE-2025-4390 with mitigations and WAF