- March 18, 2026The Zarinpal Gateway for WooCommerce plugin for WordPress is vulnerable to Improper Access Control to Payment Status Update in all…
- March 18, 2026The RSS Aggregator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'template' parameter in all versions up…
- March 18, 2026The Super Page Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Activity Log in all versions…
- March 18, 2026The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,…
- March 18, 2026The Jetpack CRM plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 6.7.0. This…
- March 18, 2026The User Language Switch plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including,…
- March 18, 2026The Flexi Product Slider and Grid for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions…
- March 18, 2026The Super Simple Contact Form plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'sscf_name' parameter in all…
- March 18, 2026The BlueSnap Payment Gateway for WooCommerce plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and…
- March 18, 2026The Magic Login Mail or QR Code plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,…
