CVE-2026-22182 - Exploiting wpDiscuz’s Notification Flood Vulnerability (DoS) in WordPress
If you’re using the wpDiscuz plugin for WordPress (version before 7.6.47), your website could be at risk of a denial of service
CVE-2024-51915 - Stored XSS in LiteSpeed Cache Plugin (<= 6.5.2) — Full Exploit Details
A new security issue—CVE-2024-51915—was discovered in the popular LiteSpeed Cache plugin for WordPress, affecting all versions up to and including 6.5.2.
CVE-2023-47232 - Exploiting the mojofywp WP Affiliate Disclosure Plugin Vulnerability (Versions up to 1.2.6)
If you run a WordPress website and use affiliate links, you might be familiar with the WP Affiliate Disclosure plugin from mojofywp. This nifty tool
CVE-2025-13486 - Remote Code Execution in Advanced Custom Fields Extended Plugin for WordPress
Published: 2024-06-25 <br>Affected Plugin: Advanced Custom Fields: Extended <br>Vulnerable Versions: .9..5 through .9.1.1
TL;DR
A
CVE-2025-22288 - How Path Traversal Vulnerability in WPMU DEV Smush Plugin Can Expose Your WordPress
Security researchers found a critical weakness in millions of WordPress websites using the popular Smush Image Compression and Optimization plugin, published by WPMU DEV. This
Episode
00:00:00
00:00:00