Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Security Intel Hub 29734+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 6.4
WordPress wp-applicantstack-jobs-display Plugin Input Validation Vulnerability Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided webpage screenshot displays the source code of a WordPress plugin, specifically `wp-applicantstack-jobs-display/trunk/wp-applicantstack-jobs-display.php`. A pot…

Read more
CVSS 6.1
Analysis of wp-emoction-rating Plugin Lacking Sanitization/Escaping for POST Data
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The screenshot displays the source code file `wp-emo-admin.php` for the WordPress plugin "wp-emoction-rating." The file contains a potential security vulnerability, specific…

Read more
CVSS 6.1
WordPress wp-emo-rating Plugin Input Validation Weakness and XSS Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided webpage screenshot displays the source code of a WordPress plugin, specifically the `wp-emo-admin.php` file. The file contains a potential security vulnerabilit…

Read more
CVSS 6.1
WordPress wp-emojion-rating plugin insufficient input validation analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided webpage screenshot displays the source code of the WordPress plugin "wp-emojion-rating," specifically the file `wp-emo-admin.php`. The file contains a potential…

Read more
CVSS 6.1
Analysis of Potential XSS Vulnerability in WordPress Plugin wp-emoction-rating
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The web screenshot displays the code file `wp-emo-admin.php` for the WordPress plugin “wp-emoction-rating”. A potential security vulnerability exists in this file, specifica…

Read more
CVSS 6.1
WordPress Plugin wp-emojion-rating Potential Injection Vulnerability Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided webpage screenshot displays the source code of a WordPress plugin file named `wp-emojion-admin.php` from the "wp-emojion-rating" plugin. A potential security vu…

Read more
CVSS 4.3
WordPress wp-mobi Plugin Template Injection Vulnerability Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The webpage screenshot shows the source code file `CCore.class.php` for the plugin named `wp-mobi` in the WordPress plugin directory. The file contains a potential security …

Read more
CVSS 4.3
WordPress wp-mobi Plugin Reflected XSS Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The webpage screenshot displays the source code file `general_settings.php` of the plugin `wp-mobi` from the WordPress plugin directory. A potential security vulnerability e…

Read more
CVSS 4.4
SQL Injection Vulnerability in WordPress wp-google-map-plugin
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided webpage screenshot displays the source code file `model.location.php` for the WordPress plugin "wp-google-map-plugin". A potential security vulnerability exists…

Read more
CVSS 7.5
WordPress wp-ticket Plugin Privilege Escalation Vulnerability Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview This vulnerability involves a privilege escalation issue in version 5.0.5 of the WordPress plugin `wp-ticket`. Specifically, the `end_filter` function contains a flaw in han…

Read more
CVSS 6.1
WordPress wp-ultimate-map Plugin SSRF via Unfiltered $_POST in load_google_map_js
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided screenshot shows a file `class-admin.php` from a WordPress plugin directory, located at `wp-ultimate-map/tags/1.1/admin/class-admin.php`. The file contains a po…

Read more
CVSS 6.1
WordPress wp-ultimate-map Plugin Reflected XSS Vulnerability Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The web screenshot displays the file `class-admin.php` from a WordPress plugin directory, located under `wp-ultimate-map/tags/1.1/admin/`. The file was last modified 11 year…

Read more
CVSS 6.4
SQLi & LFI/RFI in WordPress wp-stripe-express plugin: Code Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The screenshot of the webpage shows the source code file `stripe-shortcodes.php` of the WordPress plugin `wp-stripe-express`. A potential security vulnerability exists in th…

Read more
CVSS 6.4
WordPress wp-stripe-express Plugin SQL Injection Vulnerability Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The screenshot displays the source code file `wp-stripe-shortcodes.php` of the `wp-stripe-express` plugin in the WordPress plugin directory. The file contains a potential se…

Read more
CVSS 7.5
WordPress Plugin wp-user-manager Gamajo Template Loader Security Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The webpage screenshot displays a file named `class-gamajo-template-loader.php`, which is part of the WordPress plugin `wp-user-manager`. A potential security vulnerability …

Read more
CVSS 7.5
WordPress wp-user-manager Plugin Unauthenticated Access Vulnerability
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The screenshot of the webpage shows the source code of a plugin named "wp-user-manager" from the WordPress plugin directory. The file path is `/tags/2.9.15/vendor-dist/brain…

Read more
CVSS 5.3
Code audit and fix advisory for WordPress plugin wpforms-lite
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview This page displays the `BillingSubscriptionCancelled.php` code file within the WordPress plugin `wpforms-lite`, located in the `src/Integrations/PayPalCommerce/Api/Webhooks/…

Read more
CVSS 7.5
wp-user-manager Plugin Router Logic Flaw Leading to Unauthorized Access
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided screenshot displays the source code file `Router.php` for the WordPress plugin `wp-user-manager`. A potential security vulnerability exists within this file, sp…

Read more
CVSS 5.3
wpforms-lite PayPal Webhook Validation Bypass Vulnerability Analysis
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided webpage screenshot displays a file named `WebhookRoute.php`, which contains a potential vulnerability. The issue primarily concerns the Webhook processing logic…

Read more
CVSS 5.3
WPForms PayPal Commerce Webhook Unauthorized Access Vulnerability
plugins.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The provided webpage screenshot displays a file from the WordPress plugin directory, specifically `wpforms-lite/tags/1.10.0.4/src/Integrations/PayPalCommerce/Api/WebhookRout…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.