CVE-2025-31642 – WordPress WPCHURCH plugin

CVE ID : CVE-2025-31642

Published : Jan. 7, 2026, 2:14 a.m. | 13 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Dasinfomedia WPCHURCH allows Reflected XSS.This issue affects WPCHURCH: from n/a through 2.7.0.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-21858 – n8n Vulnerable to Unauthenticated File Access via Improper Webhook Request Handling

CVE-2026-21875 – ClipBucket v5 Vulnerable to Blind SQL Injection through Channel Comments

CVE-2026-21869 – llama.cpp has Out-of-bounds Write in llama-server

CVE-2025-15346 – wolfSSL Python library `CERT_REQUIRED` mode fails to enforce client certificate requirement