TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Wordfence Blog

Wordfence Intelligence Weekly WordPress Vulnerability Report (March 30, 2026 to April 5, 2026)

Chloe Chamberland · 2026-04-09 · Read original ↗

ATT&CK techniques detected

9 predictions
T1190Exploit Public-Facing Application
99%
"wordfence premium, care, and response customers received this protection immediately, while users still running the free version of wordfence will receive this enhanced protection after a 30 day delay. total unpatched & patched vulnerabilities last week patch status number of vul…"
T1190Exploit Public-Facing Application
95%
"supakiad s. ( m3ez ) more details > amelia < = 2. 1. 2 - authenticated ( manager + ) sql injection via ' sort ' parameter 6. 5 cvss rating 6. 5 ( medium ) cve - id cve - 2026 - 4668 patch status patched published mar 31, 2026 affected software booking for appointments and events …"
T1588.006Vulnerabilities
71%
"##fence intelligence. this database is continuously updated, maintained, and populated by wordfence ’ s highly credentialed and experienced vulnerability researchers through in - house vulnerability research, vulnerability researchers submitting directly to us through our bug bou…"
T1588.006Vulnerabilities
71%
"file sharing < 1. 7. 58 - authenticated ( contributor + ) arbitrary file download 4. 3 cvss rating 4. 3 ( medium ) cve - id cve - 2025 - 15433 patch status patched published mar 30, 2026 affected software shared files – frontend file upload form & secure file sharing [ shared - f…"
T1588.006Vulnerabilities
53%
". 8 ( high ) cve - id cve - 2026 - 3666 patch status patched published apr 3, 2026 affected software wpforo forum [ wpforo ] researchers webbernautleonid semenenko ( lsemenenko ) more details > mw wp form < = 5. 1. 0 - unauthenticated arbitrary file move via move _ temp _ file _ …"
T1588.006Vulnerabilities
43%
"##rugov artyom 1 type5afe 1 zaim 1 bonds 1 erwan lr 1 quoc huy ( jtwings ) 1 athiwat tiprasaharn ( jitlada ) 1 alex tselevich ( nos3curity ) 1 wesley ( wcraft ) 1 jakub herman 1 muhammad rohan khan 1 mohammad aghdasi 1 leonid semenenko ( lsemenenko ) 1 jack pas ( dark. ) 1 are yo…"
T1190Exploit Public-Facing Application
38%
"more details > query monitor < = 3. 20. 3 - reflected cross - site scripting via request uri 7. 2 cvss rating 7. 2 ( high ) cve - id cve - 2026 - 4267 patch status patched published mar 30, 2026 affected software query monitor [ query - monitor ] researcher dmitrii ignatyev more …"
T1588.006Vulnerabilities
35%
"rating 9. 8 ( critical ) cve - id cve - 2026 - 3300 patch status patched published mar 30, 2026 affected software everest forms pro [ everest - forms - pro ] researcher h0xilo more details > order notification for woocommerce – get audio alert on new orders < 3. 6. 3 - unauthenti…"
T1190Exploit Public-Facing Application
33%
"for elementor [ xpro - elementor - addons ] researcher athiwat tiprasaharn ( jitlada ) more details > auto post scheduler < = 1. 84 - cross - site request forgery to stored cross - site scripting via aps _ options _ page 6. 1 cvss rating 6. 1 ( medium ) cve - id cve - 2026 - 1877…"

Summary

Last week, there were disclosed in that have been added to the Wordfence Intelligence Vulnerability Database, and there were that contributed to WordPress Security last week. Review those vulnerabilities in this report now to ensure your site is not affected. Our mission with Wordfence Intelligence is to make valuable vulnerability information easily accessible to everyone, ...
Read More

The post Wordfence Intelligence Weekly WordPress Vulnerability Report (March 30, 2026 to April 5, 2026) appeared first on Wordfence.