Vulnerabilities
Emerging attack types, vulnerability disclosures, breach reports, security red flags
Sort by:
All Articles
-
Spectra Gutenberg Blocks Remote Code Execution Vulnerability CVE-2026-7465 Disclosed
Security researchers have identified a critical remote code execution vulnerability in the Spectra Gutenberg Blocks plugin for WordPress, a widely used extension for building Gutenberg-based layouts. The flaw allows authenticated users with contributor-level permissions to execute arbitrary PHP code under certain conditions involving block attributes. If exploited, this vulnerability can lead to full site compromise,…
-
WP Maps Pro Privilege Escalation Exploit Explained
A critical vulnerability has been discovered in WP Maps Pro (versions ≤ 6.1.0) that allows unauthenticated attackers to create administrator accounts via the wpgmp_temp_access_ajax AJAX action. This plugin security flaw enables privilege escalation without requiring login credentials, effectively allowing remote attackers to take full control of affected WordPress sites. Site administrators using WP Maps Pro…
