CVE-2025-1450: Stored XSS Vulnerability in Floating Chat Widget for WordPress - Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button, WhatsApp – Chaty Plugin (up to Version 3.3.5)
A new vulnerability, identified as CVE-2025-1450, has been discovered in the Floating Chat Widget – Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call
CVE-2024-12434 - SureMembers WordPress Plugin REST API Leak – How Attackers Can Steal Your Restricted Content
If you’re managing a WordPress website and use the SureMembers plugin, you need to know about a serious flaw that could expose private or
CVE-2024-13693 - Exploiting WordPress Enfold Theme Unauthorized Data Export (Simple Language Deep Dive)
In early 2024, security researchers identified a major vulnerability in one of the web’s most popular WordPress themes, Enfold. If you or your clients
CVE-2025-1128 - Everest Forms WordPress Plugin Vulnerability—How Hackers Can Upload, Read, and Delete Any File on Your Site
In early 2025, security researchers disclosed a severe vulnerability—CVE-2025-1128—affecting the widely used Everest Forms – Contact Forms, Quiz, Survey, Newsletter & Payment Form Builder
CVE-2025-1063 - Exploiting Sensitive Data Exposure in The Classified Listing – Classified Ads & Business Directory Plugin for WordPress (Up to v4..4)
WordPress powers millions of websites, and plugins bring essential features to site owners. But what happens when a plugin has a vulnerability that leaks sensitive
Episode
00:00:00
00:00:00