Security Advisories

WordPress Nelio AB Testing plugin Remote Code Execution (CVE-2026-32573)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0139
Overview:
Improper Control of Generation of Code ('Code Injection') vulnerabilit...
Read more
PublishPress Revisions WordPress Plugin SQL Injection (CVE-2026-32539)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0138
Overview:
CVE-2026-32539 is a critical SQL Injection vulnerability (CVSS score 9...
Read more
halfdata Green Downloads WordPress Plugin Unrestricted File Upload (CVE-2026-32536)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0137
Overview:
CVE-2026-32536 is a critical Unrestricted Upload of File with Dangerou...
Read more
JetFormBuilder WordPress Plugin Critical Code Injection (CVE-2026-32525)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0136
Overview:
CVE-2026-32525 is an Improper Control of Generation of Code (Code Inje...
Read more
TotalSuite Total Poll Lite Critical Code Injection (CVE-2026-27044)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0135
Overview:
CVE-2026-27044 is a critical Code Injection vulnerability (CVSS score...
Read more
node-tesseract-ocr npm Package OS Command Injection (CVE-2026-26832)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0134
Overview:
CVE-2026-26832 is a critical OS Command Injection vulnerability (CVSS...
Read more
pdf-image npm Package OS Command Injection (CVE-2026-26830)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0133
Overview:
CVE-2026-26830 is a critical OS command injection vulnerability (CVSS...
Read more
Widget Wrangler WordPress Plugin Critical Code Injection (CVE-2026-25447)
Published On: Mar 27, 2026 (1 day ago)
Reference No: TZCERT-SA-26-0132
Overview:
CVE-2026-25447 is an Improper Control of Generation of Code (Code Inje...
Read more
Critical Information Disclosure Vulnerability in MongoDB (CVE-2025-14847)
Published On: Dec 30, 2025 (2 months ago)
Reference No: TZCERT-SA-25-0131
Overview:
The vulnerability stems from an implementation flaw in MongoDB Server’...
Read more

Subscribe To TZ - CERT Newsletter

A digest of Tanzania Computer Emergency Response Team coverage of cyber-security news across the globe.

Subscribe
Report Incident