Report Tag: remote code execution

Security

Authenticated Arbitrary File Upload Vulnerability Patched in Slider Revolution 7 WordPress Plugin

An authenticated arbitrary file upload vulnerability affecting Slider Revolution 7.0.0 to 7.0.10 has been patched in version 7.0.11. This flaw allowed subscriber-level users to achieve remote code execution.

May 7, 2026 · 5 min read

Security

Attackers Actively Exploiting Critical Vulnerability in Breeze Cache Plugin

A critical Arbitrary File Upload vulnerability in Breeze Cache plugin is actively exploited, risking remote code execution on 400,000 WordPress sites. Immediate update to version 2.4.5 is vital.

May 6, 2026 · 5 min read

Security

Attackers Actively Exploiting Critical Vulnerability in Kali Forms Plugin

Critical RCE vulnerability in Kali Forms plugin actively exploited since March 20, 2026. Over 312,200 attacks blocked by Wordfence. Update to version 2.4.10 immediately.

Apr 14, 2026 · 5 min read