WordPress security bulletins

Stay informed with our up-to-date WordPress CVE security bulletins. We cover known Common Vulnerabilities and Exposures (CVEs) affecting WordPress so you can quickly understand potential risks to your site. Our WordPress security experts help identify and remediate vulnerabilities, giving you a trusted resource for tracking security issues and determining whether your website may be affected.

GiveWP Plugin Vulnerability (CVE-2026-11981)

Security Alert Summary The GiveWP plugin for WordPress is affected by a Cross-Site Request Forgery (CSRF) vulnerability (CVE-2026-11981). Missing nonce validation in the give_set_notification_status_handler() function makes it possible for an…
Read security notice