These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2026-54189 is a high-severity Unauthenticated Cross Site Scripting (XSS) vulnerability in the JetEngine plugin, affecting versions up to 3.8.10. The vulnerability has a CVSS score of 7.1 and was published on June 17, 2026. Users of the affected plugin are at risk of XSS attacks. Administrators should update to a patched version as soon as possible. The CVE record and NVD details provide further inform [truncated]
CVE-2026-54188 is a high-severity Unauthenticated Cross Site Scripting (XSS) vulnerability in the JetEngine plugin, affecting versions up to 3.8.10. The vulnerability has a CVSS score of 7.1 and was published on June 17, 2026. Users of the affected plugin versions should take immediate action to mitigate the risk. This vulnerability allows attackers to inject malicious scripts into web pages viewed by oth [truncated]
CVE-2026-54187 is a critical vulnerability in the JetEngine plugin, specifically versions up to 3.8.10.1. It allows unauthenticated SQL injection, posing a significant risk to affected installations. The CVSS score for this vulnerability is 9.3, indicating a critical severity level. This vulnerability was made public on June 17, 2026. Users of the affected plugin versions should take immediate action to m [truncated]
CVE-2026-52706 is a critical vulnerability in the JetEngine plugin for WordPress, affecting versions up to 3.8.10. The vulnerability allows unauthenticated PHP object injection, which can lead to severe consequences, including code execution and data breaches. With a CVSS score of 9.8, this vulnerability is considered critical and requires immediate attention. Administrators of WordPress sites using the J [truncated]
CVE-2026-52696 is a HIGH severity vulnerability with a CVSS score of 7.5, affecting JetBlog versions up to 2.4.8. This vulnerability allows unauthenticated sensitive data exposure. The CVE was published on 2026-06-17T13:20:48.917Z and last modified on 2026-06-17T14:44:26.397Z. Users of affected JetBlog versions should take immediate action to mitigate potential risks. The vulnerability is tracked by Patch [truncated]
CVE-2026-49084 is a critical vulnerability in the JetEngine plugin for WordPress, allowing unauthenticated SQL injection. With a CVSS score of 9.3, this vulnerability poses a significant risk to affected systems. The vulnerability was published on June 17, 2026, and immediately gained attention due to its severity. Users of JetEngine versions prior to 3.8.9.1 are urged to update to the latest version to m [truncated]
CVE-2026-49079 is a critical vulnerability in the JetSearch plugin, affecting versions up to 3.5.17. It allows unauthenticated attackers to inject malicious SQL, potentially leading to data breaches and system compromise. With a CVSS score of 9.3, this vulnerability is considered critical. Users of the affected plugin versions should take immediate action to mitigate the risk. The vulnerability was publis [truncated]
CVE-2026-49076 is a critical vulnerability in the JetEngine plugin, specifically versions up to 3.8.9.1. This vulnerability allows unauthenticated SQL injection, posing a significant risk to affected systems. With a CVSS score of 9.3, it is considered critical. The vulnerability was published on 2026-06-17 and has since been modified on the same day. Users of the affected plugin versions should take immed [truncated]
A critical PHP object injection vulnerability was discovered in JetEngine plugin version 3.8.9.1 and earlier. This vulnerability has a CVSS score of 9.8 and can allow an attacker to execute arbitrary code on the affected system. The vulnerability was publicly disclosed on June 17, 2026. Users of the affected plugin should update to the latest version as soon as possible. The vulnerability is tracked under [truncated]
CVE-2026-49074 is a high-severity Unauthenticated Cross Site Scripting (XSS) vulnerability in JetEngine versions up to 3.8.9.1. The vulnerability has a CVSS score of 7.1 and was published on June 17, 2026. Users of affected versions should apply patches immediately. The vulnerability allows attackers to inject malicious scripts into web pages viewed by other users. This issue is particularly concerning be [truncated]
CVE-2026-48875 is a critical vulnerability in the JetSmartFilters plugin, with a CVSS score of 9.3. It allows unauthenticated SQL injection attacks. The vulnerability was published on 2026-06-17 and last modified on 2026-06-17. Users of affected versions should take immediate action to mitigate the risk. This vulnerability is considered critical and can lead to high impact on confidentiality, and low impa [truncated]
