- March 18, 2026The MyHome Core plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0. This…
- March 18, 2026The eCommerce plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 3.15.1 via deserialization…
- March 18, 2026The Beaver Builder Page Builder – Drag and Drop Website Builder plugin for WordPress is vulnerable to Remote Code Execution…
- March 18, 2026The Paid Downloads plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.15 due to…
- March 18, 2026The Lawyer Directory plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.3.3.This makes…
- March 18, 2026The JobWP plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.4.5 due to…
- March 18, 2026The WorkScout-Core plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.7.06 due to…
- March 18, 2026The Creator LMS – The LMS for Creators, Coaches, and Trainers plugin for WordPress is vulnerable to unauthorized modification of…
- March 18, 2026The Nexter Extension – Site Enhancements Toolkit plugin for WordPress is vulnerable to PHP Object Injection in all versions up…
- March 18, 2026The NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar plugin…
