Gdragon Coreactivity: Activity Logging For Wordpress
2 CVEs affecting Gdragon Coreactivity: Activity Logging For Wordpress. Latest disclosed: 2026-05-13. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-7635 | High | 8.1 | 2026-05-13 | The coreActivity: Activity Logging for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0. This is… |
CVE-2025-3436 | Medium | 6.5 | 2025-04-08 | The coreActivity: Activity Logging for WordPress plugin for WordPress is vulnerable to SQL Injection via the 'order' and 'orderby' parameters in all versions u… |