Live vulnerability tracking

WordPress security
alerts that matter

Get notified the moment a vulnerability is found in WordPress core, your plugins, or your theme. Free newsletter + personalised alerts for your sites.

I agree to receive the WP Alerts newsletter and accept the Privacy Policy.

Double opt-in · GDPR compliant · Unsubscribe anytime

Security overview Last 7 days

Critical

High

145

Medium

Subscribers

212 total vulnerabilities tracked

Everything you need to stay secure

One platform for all WordPress security intelligence.

🔍

Site Scanner

Scan any WordPress site to detect installed plugins, themes and core version — then instantly check for known vulnerabilities.

📬

Daily Newsletter

Receive a curated daily digest of new WordPress vulnerabilities. Critical issues get their own immediate alert.

🎯

Personalized Alerts

Monitor your specific sites. Get an email only when a vulnerability affects plugins or themes you actually use.

🚫

Closed Plugin Tracker

Track plugins removed from the WordPress.org repository — often a sign of a serious security issue.

🔗

WP Plugin Integration

Install our free WordPress plugin on your site for automatic detection of all installed components — no manual URL entry.

🛡️

GDPR Compliant

Double opt-in, transparent data use, easy one-click unsubscribe. Your data stays in the EU. No tracking.

Latest vulnerabilities

Most recent WordPress security issues from all sources.

Scan your site →

6.8

EUVD-2020-31216 (CVE-2020-37169) — WordPress Plugin ultimate-member 2.1.3 contains a local file inclusion vulnerab…

MEDIUM Plugin CVE-2020-37169 May 13, 2026

6.8

WordPress Plugin ultimate-member 2.1.3 Local File Inclusion

MEDIUM Plugin ultimate-member CVE-2020-37169 May 13, 2026

5.5

CVE-2020-37169 — WordPress Plugin ultimate-member 2.1.3 contains a local file inclusion vulnerability that allows aut

MEDIUM Plugin CVE-2020-37169 May 13, 2026

4.3

EUVD-2026-29952 (CVE-2026-4607) — The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is…

MEDIUM Plugin CVE-2026-4607 May 13, 2026

6.5

EUVD-2026-29953 (CVE-2026-4608) — The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is…

MEDIUM Plugin CVE-2026-4608 May 13, 2026

5.3

CVE-2026-2515 — The Hostinger Reach – AI-Powered Email Marketing for WordPress plugin for WordPress is vulnerable

MEDIUM Plugin CVE-2026-2515 May 13, 2026

4.3

EUVD-2026-29938 (CVE-2026-3426) — The RTMKit Addons for Elementor plugin for WordPress is vulnerable to unauthori…

MEDIUM Plugin CVE-2026-3426 May 13, 2026

5.3

Hostinger Reach <= 1.3.8 - Missing Authorization to Authenticated (Subscriber+) Integration API Key Update

MEDIUM Plugin hostinger-reach-ai-powered-email-marketing-for-wordpress CVE-2026-2515 May 13, 2026

6.5

EUVD-2026-29933 (CVE-2026-4782) — The Avada Builder plugin for WordPress is vulnerable to Arbitrary File Read in …

MEDIUM Plugin CVE-2026-4782 May 13, 2026

5.3

EUVD-2026-29918 (CVE-2026-2515) — The Hostinger Reach – AI-Powered Email Marketing for WordPress plugin for WordP…

MEDIUM Plugin CVE-2026-2515 May 13, 2026

Recently removed from WordPress.org

These plugins were closed/removed from the repository.

🚫

epic-gallery

epic-gallery