- March 18, 2026The Listivo Core plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.3.77. This…
- March 18, 2026The Dinatur plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.18 due to…
- March 18, 2026The RealHomes CRM plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all…
- March 18, 2026The Directorist Booking plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 2.4.1 due to…
- March 18, 2026The Koko Analytics plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 2.1.2 due to…
- March 18, 2026The AdForest Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 3.0.11 due…
- March 18, 2026The MailerLite – WooCommerce integration plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.1.2…
- March 18, 2026The Nelio A/B Testing – AB Tests and Heatmaps for Better Conversion Optimization plugin for WordPress is vulnerable to Remote…
- March 18, 2026The My auctions allegro plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 3.6.32…
- March 18, 2026The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to arbitrary file uploads due to missing…
