- March 18, 2026The Download Manager Addons for Elementor plugin for WordPress is vulnerable to SQL Injection in versions up to, and including,…
- March 18, 2026The iONE360 configurator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Contact Form Parameters in all versions…
- March 18, 2026The Image Gallery – Lightbox Gallery, Responsive Photo Gallery, Masonry Gallery plugin for WordPress is vulnerable to PHP Object Injection…
- March 18, 2026The 'Videospirecore Theme Plugin' plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to,…
- March 18, 2026The Worry Proof Backup plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 0.2.4…
- March 18, 2026The WooCommerce License Manager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in…
- March 18, 2026The wpForo Forum plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.4.13…
- March 18, 2026The WP Responsive Images plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.0…
- March 18, 2026The User Registration & Membership plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.1.2.…
- March 18, 2026The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration plugin for WordPress is vulnerable to…
