প্লাগইন দুর্বলতা

2025 10 18optimolecve202511519

Critical Optimole IDOR Exposes Authenticated Media//Published on 2025-10-18//CVE-2025-11519

CVE-2025-11519 IDOR in Optimole: essential steps for WordPress site owners and admins

2025 10 18learnpresscve202511372 1

Critical LearnPress Vulnerability Allows Unauthenticated Database Manipulation//Published on 2025-10-18//CVE-2025-11372

Urgent LearnPress CVE-2025-11372 vulnerability guide with immediate mitigations and patch steps.

2025 10 18theme editorcve20259890 1

Theme Editor CSRF Enables Remote Code Execution//Published on 2025-10-18//CVE-2025-9890

Urgent security alert: patch Theme Editor CSRF to RCE CVE-2025-9890 with update and mitigations

2025 10 18ppom for woocommercecve202511691

Critical Unauthenticated SQL Injection in PPOM Plugin//Published on 2025-10-18//CVE-2025-11691

Urgent PPOM for WooCommerce CVE-2025-11691 unauthenticated SQLi patch guidance and mitigations

2025 10 18wp go mapscve202511703

Critical Unauthenticated Cache Poisoning WP Go Maps//Published on 2025-10-18//CVE-2025-11703

Urgent guide to fix WP Go Maps cache poisoning CVE-2025-11703 with patch 9.0.49

2025 10 18wpbakery page buildercve202510006

WPBakery Stored XSS Affects Contributor Accounts//Published on 2025-10-18//CVE-2025-10006

WPBakery stored XSS CVE-2025-10006 patch to 8.7+ and defend with WP-Firewall

2025 10 18learnpresscve202511372

LearnPress Authorization Bypass Risks Database Integrity//Published on 2025-10-18//CVE-2025-11372

LearnPress CVE-2025-11372 unauthenticated DB manipulation fix in 4.2.9.4; urgent remediation steps for WordPress.

2025 10 18gspeech ttscve202510187

Authenticated SQL Injection in GSpeech TTS//Published on 2025-10-18//CVE-2025-10187

GSpeech TTS CVE-2025-10187 authenticated admin SQL injection mitigation and hardening guide

2025 10 18powerbi embed reportscve202510750

Critical Sensitive Data Exposure in PowerBI Plugin//Published on 2025-10-18//CVE-2025-10750

CVE-2025-10750 unauthenticated data exposure in Power BI Embed Reports and WordPress mitigations

2025 10 18event ticketscve202511517

Event Tickets Plugin Unauthenticated Payment Bypass//Published on 2025-10-18//CVE-2025-11517

Urgent WordPress Event Tickets CVE-2025-11517 unauthenticated payment bypass mitigation and patch guidance