CVE-2026-5753

The All-in-One WP Migration Unlimited Extension plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.83. This is due to the 'Ai1wmveSchedulesController::save' handler for 'adminpostai1wmscheduleeventsave' not verifying user capabilities before saving...

BuddyBoss Platform 信息泄露漏洞

BuddyBoss Platform is a state-of-the-art plugin from BuddyBoss for running online communities on WordPress. BuddyBoss Platform has a security vulnerability that can be exploited by a remote attacker to obtain each user's email address...