CVE-2025-2186 - How a WooCommerce Plugin Left Stores Wide Open with a Simple SQL Injection
A high-risk vulnerability, CVE-2025-2186, was identified in the popular FunnelKit plugin for WordPress, specifically in the Recover WooCommerce Cart Abandonment, Newsletter, Email
CVE-2025-1311 - SQL Injection Vulnerability in WooCommerce Multivendor Marketplace – REST API Plugin (WordPress)
A new and serious security flaw (CVE-2025-1311) was recently discovered in the popular WooCommerce Multivendor Marketplace – REST API plugin for WordPress. This vulnerability
CVE-2025-2505 - Age Gate WordPress Plugin – Local PHP File Inclusion Vulnerability Exploit Guide
Published: July 2024
*By: WP Security Labs Exclusive*
Summary
A critical vulnerability (CVE-2025-2505) has been discovered in the Age Gate WordPress plugin – one
CVE-2025-2353 - Critical SQL Injection Vulnerability in Virtual Airlines Manager (VAM) up to 2.6.2
Published: June 2024
Summary
A critical vulnerability, CVE-2025-2353, was recently discovered in Virtual Airlines Manager (VAM) versions up to 2.6.2. This
CVE-2025-1285 - How Unauthorized Attackers Can Hijack Resido Real Estate WordPress Sites
In early 2025, a high-risk security flaw was uncovered in the popular Resido - Real Estate WordPress Theme. This vulnerability, tracked as CVE-2025-1285,
Episode
00:00:00
00:00:00