Plugin: ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup
Versions: <= 7.3.1
CVSS: 9.8/10
Correctif: 7.3.2

2 juin 2026

Lire

MoyenneCVSS 6.5

CVE-2026-5074

Injection SQL, authentifié (Abonné+), dans ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup (<= 7.3.1)

Plugin: ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup
Versions: <= 7.3.1
CVSS: 6.5/10
Correctif: 7.3.2

Injection SQL, non authentifié, dans ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup (<= 7.3.1)

Plugin: ARMember Premium – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup
Versions: <= 7.3.1
CVSS: 7.5/10
Correctif: 7.3.2

Défaut de contrôle d'accès dans Employee, Leave and Recruitment Management System – Crew HRM (<= 1.2.2)

Plugin: Employee, Leave and Recruitment Management System – Crew HRM
Versions: <= 1.2.2
CVSS: 4.3/10
Correctif: 1.2.3

Injection SQL, authentifié (Abonné+), dans ELEX WordPress HelpDesk & Customer Ticketing System (<= 3.3.6)

Plugin: ELEX WordPress HelpDesk & Customer Ticketing System
Versions: <= 3.3.6
CVSS: 6.5/10
Correctif: 3.3.7

XSS stocké, non authentifié, dans HollerBox — Fast & Effective Popups & Lead-Generation (<= 2.3.10.1)

Plugin: HollerBox — Fast & Effective Popups & Lead-Generation
Versions: <= 2.3.10.1
CVSS: 7.2/10
Correctif: 2.3.11

Faille de sécurité, authentifié (Abonné+), dans Visual Link Preview (<= 2.4.1)

Plugin: Visual Link Preview
Versions: <= 2.4.1
CVSS: 4.3/10
Correctif: 2.4.2

XSS stocké, authentifié (Abonné+), dans King Addons for Elementor – 80+ Elementor Widgets, 4 000+ Elementor Templates, WooCommerce, Mega Menu, Popup Builder (<= 51.1.62)

Plugin: King Addons for Elementor – 80+ Elementor Widgets, 4 000+ Elementor Templates, WooCommerce, Mega Menu, Popup Builder
Versions: <= 51.1.62
CVSS: 6.4/10
Correctif: 51.1.63

Injection SQL, non authentifié, dans JS Help Desk – AI-Powered Support & Ticketing System (<= 3.0.9)

Plugin: JS Help Desk – AI-Powered Support & Ticketing System
Versions: <= 3.0.9
CVSS: 7.5/10
Correctif: 3.1.0

XSS stocké, authentifié (Éditeur+), dans Progress Planner (<= 1.9.0)

Plugin: Progress Planner
Versions: <= 1.9.0
CVSS: 4.4/10
Correctif: 1.9.1

2 juin 2026

Lire

205 – 216 sur 5001 articles