Live vulnerability tracking

WordPress security
alerts that matter

Get notified the moment a vulnerability is found in WordPress core, your plugins, or your theme. Free newsletter + personalised alerts for your sites.

I agree to receive the WP Alerts newsletter and accept the Privacy Policy.

Double opt-in · GDPR compliant · Unsubscribe anytime

Security overview Last 7 days

Critical

176

High

389

Medium

Subscribers

617 total vulnerabilities tracked

Everything you need to stay secure

One platform for all WordPress security intelligence.

🔍

Site Scanner

Scan any WordPress site to detect installed plugins, themes and core version — then instantly check for known vulnerabilities.

📬

Daily Newsletter

Receive a curated daily digest of new WordPress vulnerabilities. Critical issues get their own immediate alert.

🎯

Personalized Alerts

Monitor your specific sites. Get an email only when a vulnerability affects plugins or themes you actually use.

🚫

Closed Plugin Tracker

Track plugins removed from the WordPress.org repository — often a sign of a serious security issue.

🔗

WP Plugin Integration

Install our free WordPress plugin on your site for automatic detection of all installed components — no manual URL entry.

🛡️

GDPR Compliant

Double opt-in, transparent data use, easy one-click unsubscribe. Your data stays in the EU. No tracking.

Latest vulnerabilities

Most recent WordPress security issues from all sources.

Scan your site →

5.1

WordPress Theme Zoner Real Estate 4.1.1 Persistent XSS

MEDIUM Plugin zoner-real-estate CVE-2019-25742 Jun 4, 2026

6.4

CVE-2019-25742 — WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability tha

MEDIUM Theme CVE-2019-25742 Jun 4, 2026

5.1

EUVD-2019-20180 (CVE-2019-25744) — WordPress Popup Builder 3.49 contains a persistent cross-site scripting vulnera…

MEDIUM Plugin CVE-2019-25744 Jun 4, 2026

5.1

EUVD-2019-20178 (CVE-2019-25742) — WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site script…

MEDIUM Plugin CVE-2019-25742 Jun 4, 2026

5.1

EUVD-2019-20179 (CVE-2019-25743) — WordPress Soliloquy Lite 2.5.6 contains a persistent cross-site scripting vulne…

MEDIUM Plugin CVE-2019-25743 Jun 4, 2026

6.5

EUVD-2026-34191 (CVE-2026-8653) — The MasterStudy LMS Pro Plus plugin for WordPress is vulnerable to generic SQL …

MEDIUM Plugin CVE-2026-8653 Jun 4, 2026

4.3

EUVD-2026-34055 (CVE-2026-9732) — The EmergencyWP – Dead Man's switch & legacy deliverance plugin for WordPress i…

MEDIUM Plugin CVE-2026-9732 Jun 2, 2026

4.4

EUVD-2026-34054 (CVE-2026-7421) — The Passeum Ticketing plugin for WordPress is vulnerable to Stored Cross-Site S…

MEDIUM Plugin CVE-2026-7421 Jun 2, 2026

6.5

EUVD-2026-34004 (CVE-2026-5074) — The ARMember Premium plugin for WordPress is vulnerable to SQL Injection via th…

MEDIUM Plugin CVE-2026-5074 Jun 2, 2026

5.4

EUVD-2026-33901 (CVE-2026-5191) — The Tiled Gallery Carousel Without JetPack plugin for WordPress is vulnerable t…

MEDIUM Plugin CVE-2026-5191 Jun 2, 2026

Recently removed from WordPress.org

These plugins were closed/removed from the repository.

🚫

kc-crm-register

kc-crm-register

Not found on WordPress.org

Detected: May 21, 2026

🚫

woocommerce-product-filters

woocommerce-product-filters

Not found on WordPress.org

Detected: May 18, 2026

🚫

ultimate-elementor

ultimate-elementor

Not found on WordPress.org

Detected: May 18, 2026

🚫

Sendcloud | Shipping & Returns Automation for WooCommerce

sendcloud-shipping

Plugin closed by WordPress.org

Detected: May 18, 2026

🚫

epic-gallery

epic-gallery