CVE-2026-56025

These plugins have known vulnerabilities and have not been updated (fixed). Please check with the vendor immediately. If you did not receive a patched version, delete them completely. Just deactivating them is not enough – attackers can still exploit them.

Remember: recently, attacks start just minutes after disclosure. Do not take chances.

CVE-ID Plugin/Theme Name

CVE-2026-6933 Premmerce Dev Tools

CVE-2026-56014 Master Slider – Responsive Touch Slider *

CVE-2026-8039 Fancy Testimonials

CVE-2026-9187 Abandoned Contact Form 7

CVE-2026-56025 Paymob for WooCommerce

CVE-2026-10780 Static Block

CVE-2026-56024 WP Easy Pay – Payment and Donation form Builder for Square

*** Master Slider has more than 90,000 active installations**