- March 18, 2026The Master Addons for Elementor Premium plugin for WordPress is vulnerable to Remote Code Execution in all versions up to,…
- March 18, 2026The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to privilege escalation via password…
- March 18, 2026The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and…
- March 18, 2026The Widget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets plugin for WordPress is vulnerable to Remote…
- March 18, 2026The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnerable to Server-Side Request…
- March 18, 2026The WP Mail Logging plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including,…
- March 18, 2026The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injection via the 'coupon_code'…
- March 18, 2026The Super Stage WP plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.0.1…
- March 18, 2026The Lawyer Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.3.2 due…
- March 18, 2026The WP Attractive Donations System - Easy Stripe & Paypal donations plugin for WordPress is vulnerable to SQL Injection in…
- March 18, 2026The Filr – Secure document library plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type…
- March 18, 2026The JetEngine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 3.7.2. This…
- March 18, 2026The Fluent Forms Pro Add On Pack plugin for WordPress is vulnerable to Insufficient Verification of Data Authenticity in all…
- March 18, 2026The Riode Core plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 1.6.26 due to…
- March 18, 2026The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to arbitrary file…
- March 18, 2026The Builderall for WordPress plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including,…
- March 18, 2026The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to PHP Object Injection in all versions up to,…
- March 18, 2026The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including,…
- March 18, 2026The WPGSI: Spreadsheet Integration plugin for WordPress is vulnerable to unauthorized modification and loss of data due to missing capability…
- March 18, 2026The Geo Mashup plugin for WordPress is vulnerable to SQL Injection via the 'sort' parameter in all versions up to,…
